Date: Tue, 02 Mar 2004 19:20:46 +0100 From: Andras Got <andras@webmedia.hu> To: freebsd-config@freebsd.org Subject: Re: Converting iptables to ipfw Message-ID: <4044D07E.5090601@webmedia.hu> In-Reply-To: <4044CBA0.8090403@stupar.homelinux.net> References: <4044CBA0.8090403@stupar.homelinux.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi! All the below mentioned works. I think you should use ipf for packet filtering, and ipnat for NAT. For /etc/ipnat.rules, the basic is: map $inet_iface $lan_mask -> 0/32 $lan_mask= x.x.x.x/y (netmask) For /etc/ipf.rules: http://www.obfuscation.org/ipf/ipf-howto.html With many examples and tricks also. Andrej Sasa Stupar wrote: > Hi! > > I am thinking to change my old linux router to the freebsd one. The > question is: how difficult is to convert iptables into ipfw rules? > I need some basic things with that router: > - internet gateway for LAN users > - packet filtering with MAC/IP address filtering > - port forwarding > - NAT onto same network so that LAN users can access web server which is > on the LAN also > > Is this all possible with ipfw? > > Regards, > Sasa > _______________________________________________ > freebsd-config@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-config > To unsubscribe, send any mail to "freebsd-config-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4044D07E.5090601>