From owner-freebsd-hackers@FreeBSD.ORG Wed Dec 14 06:01:26 2005 Return-Path: X-Original-To: freebsd-hackers@freebsd.org Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 15B4C16A41F for ; Wed, 14 Dec 2005 06:01:26 +0000 (GMT) (envelope-from vd@datamax.bg) Received: from jengal.datamax.bg (jengal.datamax.bg [82.103.104.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9201D43D49 for ; Wed, 14 Dec 2005 06:01:25 +0000 (GMT) (envelope-from vd@datamax.bg) Received: from qlovarnika.bg.datamax (qlovarnika.bg.datamax [192.168.10.2]) by jengal.datamax.bg (Postfix) with SMTP id BD419B833; Wed, 14 Dec 2005 08:01:23 +0200 (EET) Received: (nullmailer pid 8103 invoked by uid 1002); Wed, 14 Dec 2005 06:01:20 -0000 Date: Wed, 14 Dec 2005 08:01:20 +0200 From: Vasil Dimov To: OxY Message-ID: <20051214060120.GA6833@qlovarnika.bg.datamax> References: <001701c6000a$86eab700$0201a8c0@oxy> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="5mCyUwZo2JvN/JJP" Content-Disposition: inline In-Reply-To: <001701c6000a$86eab700$0201a8c0@oxy> X-OS: FreeBSD 6.0-STABLE User-Agent: Mutt/1.5.11 Cc: freebsd-hackers@freebsd.org Subject: Re: ipfw forwarding X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: vd@datamax.bg List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Dec 2005 06:01:26 -0000 --5mCyUwZo2JvN/JJP Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Dec 13, 2005 at 06:27:43PM +0100, OxY wrote: > hi! >=20 > i have a probably dumb question, can't get through it.. >=20 > i have some ips on my server (x.x.x.28 and x.x.x.204 is important).. >=20 > tried to forward packets from one ip to the other and ipfw doesn't do=20 > anything. > i'd like to catch the packets on .204 port 80 and send them to one of my= =20 > vhosts > (domain is on .28) >=20 > so anybody on the internet may open the .204 address from browser and get= =20 > back > the .28 content.. >=20 > i used this rule: >=20 > $cmd 00316 fwd x.x.x.x.204,80 tcp from any to x.x.x.28 80 >=20 > what's wrong with it? >=20 I suggest that you read *carefully* ipfw(8) and rewrite your rule to: 00316 fwd x.x.x.x.28,80 tcp from any to x.x.x.204 80 Good luck! --=20 Vasil Dimov --5mCyUwZo2JvN/JJP Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- iD8DBQFDn7UvFw6SP/bBpCARAtjoAJ9Kqcv5GaqStoCSemuGC77Em8/OfgCgzR9O 4DsR8gYW9N6wss4rrL0/FcQ= =nfhD -----END PGP SIGNATURE----- --5mCyUwZo2JvN/JJP--