Date: Thu, 13 Dec 2001 17:06:54 +0100 (CET) From: =?iso-8859-1?q?Fabrizio=20Ravazzini?= <freefabri@yahoo.it> To: freebsd-isp@freebsd.org Subject: Ipf & Bridging ??? Message-ID: <20011213160654.81416.qmail@web20108.mail.yahoo.com>
next in thread | raw e-mail | index | archive | help
Hello all I've done a bridge between Internet and my
DMZ:
Internet
|
|
Cisco Router
|
|
|rl0
FreeBSD 4.3
Bridge
|rl1
|
HUB----DMZ
The bridge works very well,for example from the DMZ
the servers in it can "see" Internet and from internet
I can "see" the servers in the DMZ(Public Ip's).
The problem is with ipf.
If for example we put a simple rule in /etc/ipf.rules
like this:
block in quick on rl0
in order to block all the traffic going to the DMZ it
happens that packets originated from internet they
by-pass my bridge/firewall!
If you ping for example the bridge they are blocked
but if you ping a machine in the dmz it responds!
arghhh..
I tried to put the rules for the bridge founded in the
Ipfilter based firewalls howto but they didn't work.
Any Idea?
Isn't ipfilter supported under freebsd?
Have I to use ipfw?
Many thanks all
bye
______________________________________________________________________
Iscriviti al Meglio della Settimana, la newsletter di Yahoo!
Per saperne di più vai alla pagina: http://buongiorno.yahoo.it
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011213160654.81416.qmail>