Date: Fri, 13 Aug 2004 09:02:26 +0200 From: Ian FREISLICH <if@hetzner.co.za> To: Chris Knipe <savage@savage.za.org> Cc: freebsd-ipfw@freebsd.org Subject: Re: ipfw & skipto.... confused a bit... Message-ID: <E1BvW54-0002Wf-00@hetzner.co.za> In-Reply-To: Message from "Chris Knipe" <savage@savage.za.org> <000b01c480dd$d4531940$fb00a8c0@savage.za.org>
next in thread | previous in thread | raw e-mail | index | archive | help
"Chris Knipe" wrote:
> Hi all,
>
> I'm a tad confused with skiptos. I want to use them, because I am
> automating setup procedures of rather large firewall tables via perl /
> mysql. From the 65535 available rules, blocks have been reserved for
> certain type of functions during the firewalling process. As such, I
> basically use all the available numbers. My last automated block is from
> 65450 to 65500 :/
>
> Let's have a look quickly at a small block so that I can have a example of
> what I am referring to....
>
> #######################################################################
> #### Transparent Services ###
> #######################################################################
> ${fwcmd} add 16000 allow tcp from ${LANIP} to any 25 out via tun1 skipto
> 16010
I thought that you had to use skipto as the action, not the rule body:
${fwcmd} add 16000 skipto 16010 tcp from ${LANIP} to any 25 out via tun1
Ian
--
Ian Freislich
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E1BvW54-0002Wf-00>