Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 18 Jul 2011 21:09:53 +0200
From:      =?iso-8859-1?q?Gr=E9goire_Leroy?= <gregoire.leroy@hyperthese.net>
To:        freebsd-ipfw@freebsd.org
Subject:   Re: FW: ipfw and nat problem
Message-ID:  <201107182109.57593.gregoire.leroy@hyperthese.net>
In-Reply-To: <CA4A4DFA.F6D9%david@pcnetwork.co.za>
References:  <CA4A4DFA.F6D9%david@pcnetwork.co.za>

next in thread | previous in thread | raw e-mail | index | archive | help
--nextPart2548024.6gXXzlguxe
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Hi,

> >I just cant seem to understand in and out.
> >Does in mean INTO the BOX or into the specific interface what happens if
> >you don=B9t specify an interface when u say in or out?
> >OR does in mean into the internal network from outside or just into the
> >box?

in and out are filters, like from and to. If you don't specify the interfac=
e,=20
it'll match all packets which go into the box (or go out, for out).
If you specify an interface, it'll be more precise.

Example :

# In and out packets which go through outgoing interface
from any to any via oif

# idem, but in packets only
from any to any in via oif

# out packets through all interfaces
from any to any out

Regards,
Gr=E9goire Leroy

--nextPart2548024.6gXXzlguxe
Content-Type: application/pgp-signature; name=signature.asc 
Content-Description: This is a digitally signed message part.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iF4EABEIAAYFAk4khQEACgkQB3Y8MwGKx1dbFAD9F2UsSGuWSqyDAMaDXCZF5pOG
Sv8p0hqDD29EwZ1rug8BAIqdshUcCJMHZsq/vYsPV06AEJGsdhk4KCtkBB2+YyeR
=f5gw
-----END PGP SIGNATURE-----

--nextPart2548024.6gXXzlguxe--



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201107182109.57593.gregoire.leroy>