From owner-freebsd-stable Tue Feb 23 9:20:33 1999 Delivered-To: freebsd-stable@freebsd.org Received: from aniwa.sky (p20-max8.wlg.ihug.co.nz [209.79.142.212]) by hub.freebsd.org (Postfix) with ESMTP id 93969113C0 for ; Tue, 23 Feb 1999 09:20:27 -0800 (PST) (envelope-from andrew@squiz.co.nz) Received: from aniwa.sky (localhost [127.0.0.1]) by aniwa.sky (8.9.1a/8.9.1) with ESMTP id GAA22179; Wed, 24 Feb 1999 06:20:10 +1300 (NZDT) Message-Id: <199902231720.GAA22179@aniwa.sky> X-Mailer: exmh version 2.0.2 2/24/98 To: Andreas Braukmann Cc: freebsd-stable@FreeBSD.ORG Subject: Re: Wanted: descr. packet dataflow interfaces / forwarding / ipfw / nat In-reply-to: Your message of "Tue, 23 Feb 1999 14:48:12 BST." <19990223144812.D7691@paert.tse-online.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Wed, 24 Feb 1999 06:20:10 +1300 From: Andrew McNaughton Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Packets coming out of NAT are just ordinary packets which get passed to the TCP stack again. Packets coming in on some interface will go to ipfw which may or may not block, log (hint) or send the packet to NAT. packets coming from NAT will then pass back into the tcp stack, and therefore ipfw. I presume they are first outgoing and then incoming on lo0, and then outgoing on whichever interface you route the packet to. Andrew McNaughton > Hi there, > > I'm searching for a piece of documentation or a 'simple' illustration > describing the flow of packets through the network stack. > > Currently I'm building a 'gateway-machine' that should get some > rather complicated (considering my knowledge of the networking code) > jobs done. (NAT on multiple interfaces, transparent proxying, etc.) > > My former natd/ipfw-setups were quite simple. But now I'm in need > of more detailed information concerning: > - at which stages/times the filter engine sees each packet > - whether a packet already translated by the natd, carries all > the 'additional' information (e.x. direction, incoming interface, etc) > further on > - etc. etc. > > Yes, ... I've read the obviously available (man-page, READMEs, etc.) > documentation thoroughly. > > Thanks in advance, > Andreas > > -- > : TSE TeleService GmbH : Gsf: Arne Reuter : : > : Hovestrasse 14 : Andreas Braukmann : We do it with : > : D-48351 Everswinkel : HRB: 1430, AG WAF : FreeBSD/SMP : > :--------------------------------------------------------------------: > : PGP-Key: http://www.tse-online.de/~ab/public-key : > : Key fingerprint: 12 13 EF BC 22 DD F4 B6 3C 25 C9 06 DC D3 45 9B : > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message