From owner-freebsd-questions@FreeBSD.ORG Sat Dec 6 15:05:00 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B1DB21065676 for ; Sat, 6 Dec 2008 15:05:00 +0000 (UTC) (envelope-from smithi@nimnet.asn.au) Received: from sola.nimnet.asn.au (paqi.nimnet.asn.au [220.233.188.227]) by mx1.freebsd.org (Postfix) with ESMTP id 24A7E8FC0C for ; Sat, 6 Dec 2008 15:04:59 +0000 (UTC) (envelope-from smithi@nimnet.asn.au) Received: from localhost (localhost [127.0.0.1]) by sola.nimnet.asn.au (8.14.2/8.14.2) with ESMTP id mB6F4g0b021073; Sun, 7 Dec 2008 02:04:42 +1100 (EST) (envelope-from smithi@nimnet.asn.au) Date: Sun, 7 Dec 2008 02:04:41 +1100 (EST) From: Ian Smith To: Olivier Nicole In-Reply-To: <20081204120024.5664610656A7@hub.freebsd.org> Message-ID: <20081207015633.F12790@sola.nimnet.asn.au> References: <20081204120024.5664610656A7@hub.freebsd.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Cc: freebsd-questions@freebsd.org Subject: Re: ipfw and bridged interface X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 06 Dec 2008 15:05:00 -0000 On Thu, 4 Dec 2008 10:33:23 +0700 (ICT) Olivier Nicole wrote: > I remember that I read, many years ago, something about the way ipfw > interacts with the IP stack. AFAIR, ipfw would be called on layer 2, > where only certain rules would be applied, then on the IP layer where > other rules would apply. Is it still the case? Where can I find th > description? Hi Olivier, See the ipfw(8) section PACKET FLOW .. it's all there, with examples of how to separate layer2 from layer3 traffic, inbound and outbound. cheers, Ian