From owner-freebsd-net@FreeBSD.ORG Tue Mar 15 12:08:53 2011 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A6393106566B for ; Tue, 15 Mar 2011 12:08:53 +0000 (UTC) (envelope-from matt.xtaz@gmail.com) Received: from mail-vw0-f54.google.com (mail-vw0-f54.google.com [209.85.212.54]) by mx1.freebsd.org (Postfix) with ESMTP id 59D948FC16 for ; Tue, 15 Mar 2011 12:08:53 +0000 (UTC) Received: by vws18 with SMTP id 18so504868vws.13 for ; Tue, 15 Mar 2011 05:08:52 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:date:message-id:subject:from:to :content-type; bh=Tpl84OJOYH8uK1jTj5R6sB+OLaoC0EtZpTiQMCd46+k=; b=lRuVwJBHK2nATr9e45XiQfMSeB0C1MKa/Z7hPH4rE3wtU6CpT9pYPb7X4tJjnQcKwX gUlv8I/BehEYahGx5gLHpCx1XVkOqKt20Nj6PjrCgRVmTpFtU9Ai5Mc7WCSEJQIiEMMV 1F45TXHa8Y5QrKO0xe2iqqITn2J9egUMoZwhk= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=ojpb88W6EVePd0hhj8TE3RP4xrutxkFoZt6dI38/wcEGmk68DC9+Ejoth8/Z750Hxk CloOmLcndwiuJlkJgR01He9HMaOU5qJm2TQ84kuF0WLkp5bPZ6sYRIdtj33V5o1op2G0 L1ey2f+k7ZUjlEmRK2M95h2wkLUg/aTaBxzes= MIME-Version: 1.0 Received: by 10.220.102.134 with SMTP id g6mr3767777vco.25.1300189176447; Tue, 15 Mar 2011 04:39:36 -0700 (PDT) Received: by 10.220.81.71 with HTTP; Tue, 15 Mar 2011 04:39:36 -0700 (PDT) Date: Tue, 15 Mar 2011 11:39:36 +0000 Message-ID: From: Matt Smith To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: IPv6 policy based source routing X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Mar 2011 12:08:53 -0000 Hi, I have a question about source routing I hope you can help me with. I have two interfaces, gif0 which is an ipv6 over ipv4 tunnel to my tunnel broker and vr0 which is my ethernet interface. I have an IPv6 address configured on my end of the gif0 tunnel and another IPv6 address from a /64 prefix configured on the vr0 interface as my servers actual IP. My problem is that I want to source all traffic from the IP address that is configured on vr0 but because the default route is set to gif0 the traffic is sourced from this IP instead. To get around this I have configured various applications such as squid and postfix to source their traffic specifically from the vr0 IP but I would like to make this the default and was wondering if there was a way of going about that. I've searched google and found references to using ipfw fwd but I can't seem to get this to make any difference. Do you know of any simple way of doing this that works? I use ipfw as my firewall and I'm running FreeBSD 8.2-RELEASE at the moment. Regards, Matt.