Date: Thu, 24 Jun 2004 12:09:59 -0700 From: David Fuchs <david@davidfuchs.ca> To: freebsd-questions@freebsd.org Subject: Re: divert rule... Message-ID: <40DB2707.1020406@davidfuchs.ca> In-Reply-To: <20040624200552.B15273@kwiatek.eu.org> References: <20040624200552.B15273@kwiatek.eu.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Andrzej Kwiatkowski wrote: > > Is it possible to use fwd rule instead of divert ?? > > For example > > 00100 fwd 127.0.0.1 8668 ip from any to any > > instead of > > 00100 divert 8668 ip from any to any > No. NATd was made to be used with divert sockets. Divert are made to work directly with FreeBSD's packet filter (and ipfw(8)), and can stop data from propagating throught the IP stack, they can be used to modify/inject packets etc. Forwarding simply passes a copy of the packet to an IP/Port, at which point it's life pretty much ends. -- Thanks, -David Fuchs BCIS (david@davidfuchs.ca) WWW: http://www.davidfuchs.ca/ Blog: http://blog.davidfuchs.ca/ MSN: david@davidfuchs.ca PGP: http://www.davidfuchs.ca/aboutme/433EEC91.pgp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?40DB2707.1020406>