Date: Fri, 14 May 2004 11:43:58 +1000 From: Norberto Meijome <freebsd@meijome.net> To: freebsd-net@freebsd.org Subject: divert with ipnat instead of ipfw? Message-ID: <40A4245E.5030409@meijome.net>
next in thread | raw e-mail | index | archive | help
Hi all, My setup : -- FreeBSD hostname 4.10-PRERELEASE FreeBSD 4.10-PRERELEASE #2: Wed Apr 28 09:40:43 EST 2004 fxp0 : link to the outside world fxp1 : link to LAN fxp2 : link to DMZ ipf firewall ipnat for LAN and rdr for services. -- I'm running tcpmssd to fix MSS: /usr/local/bin/tcpmssd -p 1000 -i fxp2 and I have the ipfw line that redirects all the traffic from fxp2 into tcpmssd: ipfw add divert 1000 tcp from x.x.x.x/y to any out via fxp0 setup (where x.x.x.x/y is the subnet behind fxp2). This works fine, but I was wondering how to do this with ipnat's rdr configuration line (rather keep ipfw for bwlimiting). I haven't managed to figure out how to redirect ALL traffic from fxp2 to that port. I can do it on a port by part basis, but I need all traffic to go through it. I tried : rdr fxp2 0.0.0.0/0 port 0-65535 -> 127.0.0.1 port 1000 but tcpmssd with -v showed no made. ipfw not used for anything else right now. Any hints? Thanks!! Beto
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?40A4245E.5030409>