From owner-freebsd-questions@FreeBSD.ORG Fri Jul 9 17:33:41 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2E92916A4CE for ; Fri, 9 Jul 2004 17:33:41 +0000 (GMT) Received: from home.mnet.bg (home.mnet.bg [193.110.223.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7B55343D48 for ; Fri, 9 Jul 2004 17:33:40 +0000 (GMT) (envelope-from dpenev@mnet.bg) Received: from localhost (home [127.0.0.1]) by home.mnet.bg (Postfix) with ESMTP id 9E72C3B2F7; Fri, 9 Jul 2004 20:33:38 +0300 (EEST) Received: from venus.dpsca.bg (ip220-81.mnet.bg [193.110.220.81]) (using TLSv1 with cipher EDH-RSA-DES-CBC3-SHA (168/168 bits)) (No client certificate requested) by home.mnet.bg (Postfix) with ESMTP id CCF173B2F6; Fri, 9 Jul 2004 20:33:37 +0300 (EEST) Received: from freebsd.vmware.dpsca.bg (freebsd.vmware.dpsca.bg [192.168.2.5]) by venus.dpsca.bg (8.12.11/8.12.11) with ESMTP id i69Ha913027039 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 9 Jul 2004 20:36:10 +0300 (EEST) Received: (from dpenev@localhost) by freebsd.vmware.dpsca.bg (8.12.11/8.12.11/Submit) id i69HZUvT000907; Fri, 9 Jul 2004 20:35:30 +0300 (EEST) (envelope-from dpenev) Date: Fri, 9 Jul 2004 20:35:30 +0300 From: Dancho Penev To: iaccounts@ibctech.ca Message-ID: <20040709173530.GA771@freebsd.vmware.dpsca.bg> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="mP3DRpeJDSE+ciuQ" Content-Disposition: inline User-Agent: Mutt/1.4.2.1i X-Virus-Scanned: by amavisd-new-20030616-p9 (Debian GNU/Linux) at mail.mnet.bg cc: freebsd-questions@FreeBSD.ORG Subject: [fwd] IPFW fwd to remote address (from: iaccounts@ibctech.ca) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Jul 2004 17:33:41 -0000 --mP3DRpeJDSE+ciuQ Content-Type: text/plain; charset=us-ascii; format=flowed Content-Disposition: inline Content-Transfer-Encoding: quoted-printable ----- Forwarded message from Steve Bertrand ----- From: "Steve Bertrand" To: freebsd-ipfw@freebsd.org Date: Fri, 9 Jul 2004 12:44:33 -0400 (EDT) Subject: IPFW fwd to remote address I am trying to set up a forward from one machine to another on a remote network across the Internet. I want to receive requests on one box on port 8080 and simply forward them to a remote machine on the same port. I have tried the following rules, to no avail. I have IPFIREWALL_FORWARD in my kernel (4.10), and # ipfw show reports the hits to the rule. # ipfw add 1000 fwd 216.209.x.x tcp from any to me 8080 # ipfw add 1000 fwd 216.209.x.x,8080 tcp from any to me 8080 # ipfw add 1000 fwd 216.209.x.x tcp from any to me 8080 # ipfw add 1000 fwd 216.209.x.x,8080 from any to any 8080 I can not see the packets going back out of the machine, nor does ipfw log anything at the other end. # tcpdump at the remote end does not pick up any traffic. Does this have something to do with the fact that I am going across the Internet, and it is trying to route the packets back to itself (I understand the dest does not get changed). If so, how could I re-write the packets so they will get delivered? Tks for any help on this Steve _______________________________________________ freebsd-ipfw@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org" ----- End forwarded message ----- You have answered yourself why doesn't forwarding work at this situation. If you want to forward http traffic you may try squid (www/squid) in accelerator mode. --=20 Dancho Penev GnuPG public key: http://www.mnet.bg/~dpenev/gnupg.asc Key fingerprint: E88D 8B7B 3EF6 E9C8 C5D2 7554 2AA8 C347 71A1 4277 --mP3DRpeJDSE+ciuQ Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFA7tdiKqjDR3GhQncRAk3/AJwPDnzsVMtqHqIRJb8+CAwtOgPVQwCdFLa4 glrS5fmDWV/4hco8Ov1gpB8= =/AMM -----END PGP SIGNATURE----- --mP3DRpeJDSE+ciuQ--