Date: Mon, 3 Mar 1997 14:06:31 PST From: Bill Fenner <fenner@parc.xerox.com> To: Archie Cobbs <archie@whistle.com> Cc: fenner@parc.xerox.com (Bill Fenner), freebsd-multimedia@freebsd.org Subject: Re: multicast firewall implications Message-ID: <97Mar3.140642pst.177476@crevenia.parc.xerox.com> In-Reply-To: Your message of "Mon, 03 Mar 97 12:01:04 PST." <199703032001.MAA26146@bubba.whistle.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Archie Cobbs <archie@whistle.com> wrote: >So assuming you had a mrouted(8) tunnel between remote-gw (external >machine on the ISP's network) and local-gw (internal machine behind >the firewall) you might install these "holes" on some intervening >packet filtering machine... > > ipfw add 100 allow igmp from remote-gw local-gw > ipfw add 100 allow igmp from local-gw remote-gw > ipfw add 100 allow ipencap from remote-gw local-gw > ipfw add 100 allow ipencap from local-gw remote-gw > >...and this would be all you would need? Looks pretty easy then. Yup, looks right. Bill
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?97Mar3.140642pst.177476>