From owner-freebsd-ipfw@FreeBSD.ORG Thu Apr 1 23:17:14 2004 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1250216A4CE for ; Thu, 1 Apr 2004 23:17:14 -0800 (PST) Received: from t1.etype.net (relay1.koenig.su [195.135.213.1]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9B4D643D1D for ; Thu, 1 Apr 2004 23:17:11 -0800 (PST) (envelope-from Igor@Garant.Koenig.RU) Received: by t1.etype.net (Postfix, from userid 83) id 4E4C34504C8; Fri, 2 Apr 2004 10:17:09 +0300 (EEST) Received: from unix.garant.koenig.ru (unknown [195.135.212.116]) by t1.etype.net (Postfix) with ESMTP id CB2E5450255 for ; Fri, 2 Apr 2004 10:17:05 +0300 (EEST) Received: (qmail 4746 invoked from network); 2 Apr 2004 07:10:38 -0000 Received: from ns.garant.koenig.ru (HELO garant.koenig.ru) (100.100.100.41) by 0 with SMTP; 2 Apr 2004 07:10:38 -0000 From: Igor Popov Organization: LVS To: freebsd-ipfw@freebsd.org Date: Fri, 2 Apr 2004 10:10:32 +0300 User-Agent: KMail/1.6 MIME-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg=pgp-sha1; boundary="Boundary-02=_tHRbATzI7lYQYEN"; charset="us-ascii" Content-Transfer-Encoding: 7bit Message-Id: <200404021010.38113.Igor@Garant.Koenig.RU> Subject: natd and tun X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Apr 2004 07:17:14 -0000 --Boundary-02=_tHRbATzI7lYQYEN Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Hi,=20 I have a question: would be natd work with tun device? I had already asked= =20 this question when FreeBSD 5.2 were released Someone have answered to me that I should use ppp builtin nat, because dive= rt=20 sockets doesn't work with tun. Simple rules like this divert all from any to any via tun0 allow all from any to any did not work. Now I use ipfilter, but I prefer to use ipfw, it is more usab= le=20 on FreeBSD. Also there is OpenBSD' pf, but it is hard to use with dynamical= ly=20 created interfaces. =2D-=20 "I wish there was a knob on the TV to turn up the intelligence. There's a knob called `brightness', but it doesn't work." -- Gallagher --Boundary-02=_tHRbATzI7lYQYEN Content-Type: application/pgp-signature Content-Description: signature -----BEGIN PGP MESSAGE----- Version: GnuPG v1.2.4 (FreeBSD) iQEVAwUAQG0R7YE3+5OFEFEBAQGJRQf5AfnzBDEqnuIZqqZT+Rxb+pW4Yyb/UI5z JqXKxYM4dip5MPuTS4L8STHFTI2jfn4dBDlmoF57yZ28g/82asxJmxxG9iYHngic cTD+8Bd9zjpfqP/ELcX0VcaQKXCDxBm2o05WK9yPVYDuQ/qiVHU0/by61Ol3rnB8 Uf0vp2n8+QKtM/GWacprT/8sq8w6KfvBpHFP/veypbbpXB36gig9hx2nQCJjSsAH KvotosMKCV/b8Q4wY5gfnvLJZXINB02mTTB1+JHsGFJA6/uVvthoNdY8tQTVkZyh lEbH9ih0d94iR6BrKEPBZa59YI4unudhiFCWEKlppq3vVkvWgBcVuQ== =xf/5 -----END PGP MESSAGE----- --Boundary-02=_tHRbATzI7lYQYEN--