From owner-freebsd-net@FreeBSD.ORG Thu May 22 07:38:29 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DD235106567B for ; Thu, 22 May 2008 07:38:29 +0000 (UTC) (envelope-from ganbold@micom.mng.net) Received: from publicd.ub.mng.net (publicd.ub.mng.net [202.179.0.88]) by mx1.freebsd.org (Postfix) with ESMTP id 8DD418FC1D for ; Thu, 22 May 2008 07:38:29 +0000 (UTC) (envelope-from ganbold@micom.mng.net) Received: from [202.179.0.164] (helo=daemon.micom.mng.net) by publicd.ub.mng.net with esmtpa (Exim 4.69 (FreeBSD)) (envelope-from ) id 1Jz5Nb-000CCc-EK for freebsd-net@freebsd.org; Thu, 22 May 2008 15:38:27 +0800 Message-ID: <483522F3.4090200@micom.mng.net> Date: Thu, 22 May 2008 15:38:27 +0800 From: Ganbold User-Agent: Thunderbird 2.0.0.12 (X11/20080304) MIME-Version: 1.0 To: freebsd-net@freebsd.org X-Enigmail-Version: 0.95.6 OpenPGP: id=78F6425E Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: ipfw fwd layer2/ftp proxy X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 May 2008 07:38:30 -0000 Hi there, I'm having trouble allowing ftp connections through ipfw (default deny) enabled bridge firewall. I'm wondering whether it is possible to have some kind of transparent ftp proxy in such case. Is there anyway I can allow ftp proxying without layer2 forwarding on ipfw bridge? I thought of forwarding packets in layer2, however it seems like ipfw still doesn't support that. I saw old patches of luigi@ and if somebody already has adapted that patch for RELENG_6/7 please let me know. I know my last try is to deny everything I don't want and then allow the rest. However I would like to make it work in current configuration. Please let me know your ideas. thanks in advance, Ganbold -- Sometimes I simply feel that the whole world is a cigarette and I'm the only ashtray.