From owner-freebsd-questions Fri Jul 3 00:51:02 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA05337 for freebsd-questions-outgoing; Fri, 3 Jul 1998 00:51:02 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from mails.ipri.kiev.ua ([195.5.13.67]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA05318 for ; Fri, 3 Jul 1998 00:50:55 -0700 (PDT) (envelope-from gnut@cki.ipri.kiev.ua) Received: from cki.ipri.kiev.ua ([195.5.13.68]) by mails.ipri.kiev.ua (8.8.8/8.8.5) with SMTP id KAA20977 for ; Fri, 3 Jul 1998 10:47:39 +0300 (EEST) Date: Fri, 3 Jul 1998 10:47:39 +0300 (EET DST) From: Oles Hnatkevych To: freebsd-questions@FreeBSD.ORG Subject: IPFW on a gateway Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi! These are more general unix questions, but.... Great thanks in advance for answering several questions. 1. When ipfw processes packets? a) when packet just arrived? b) when packet arrived, passed through routing tables and is up to be delivered to interface? 2. What means 'via interface'????? Does it mean 'from this interface' or 'to this interface'? 3. I'm going to setup ipfw on a gateway. This PC has 6 interfaces. How do I allow sendmail connections to this PC? With 6 'add' commands with all ip addresses???? In routing tables for all local addresses there's aroute like '
127.0.0.1 lo0' Can I just allow TCP connection to 127.0.0.1 instead of N 'add' rules, where N is the number of local addresses? (and 2 interfaces have even 2 aliases....) 4. Still not clear how to allow passing all packets destined not to this PC. I'm not going to firewall anything behind, just this PC. Great thanks in advance for any hints and URL's. Bye. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message