From owner-freebsd-questions@FreeBSD.ORG Thu Mar 4 01:40:06 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 96BD816A4CE for ; Thu, 4 Mar 2004 01:40:06 -0800 (PST) Received: from mail.gmx.net (imap.gmx.net [213.165.64.20]) by mx1.FreeBSD.org (Postfix) with SMTP id BA74643D1F for ; Thu, 4 Mar 2004 01:40:05 -0800 (PST) (envelope-from werner_schalk@gmx.de) Received: (qmail 24161 invoked by uid 65534); 4 Mar 2004 09:40:04 -0000 Received: from pD9018131.dip.t-dialin.net (EHLO laptop) (217.1.129.49) by mail.gmx.net (mp011) with SMTP; 04 Mar 2004 10:40:04 +0100 X-Authenticated: #15379541 From: Werner Schalk To: freebsd-questions@freebsd.org Date: Thu, 4 Mar 2004 09:41:08 +0000 User-Agent: KMail/1.6 MIME-Version: 1.0 Content-Disposition: inline Content-Type: text/plain; charset="iso-8859-15" Content-Transfer-Encoding: 7bit Message-Id: <200403040941.08903.werner_schalk@gmx.de> Subject: IPFW and NATD X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: werner_schalk@gmx.de List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 Mar 2004 09:40:06 -0000 Hi, I am using NATD and it works pretty fine. I am currently forwarding all incoming packets to an internal host and my question now is: Is there a way (with ipfw) to deny all incoming packets which are coming from that internal host and which are not responses to nat'ed requests from the Internet? So in other words: I would like to deny all data which is coming from the internal host and which is going to my FreeBSD firewall/router. Will the nat'ing still work? Bye and thanks, Werner.