From owner-freebsd-ipfw@FreeBSD.ORG Tue Dec 30 02:20:23 2003 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1B37616A4CE for ; Tue, 30 Dec 2003 02:20:23 -0800 (PST) Received: from mail.alkar.net (mail.alkar.net [195.248.191.95]) by mx1.FreeBSD.org (Postfix) with ESMTP id D595343D46 for ; Tue, 30 Dec 2003 02:20:20 -0800 (PST) (envelope-from mav@alkar.net) Received: from [212.86.226.11] (HELO alkar.net) by mail.alkar.net (CommuniGate Pro SMTP 4.1.8) with ESMTP id 133336576; Tue, 30 Dec 2003 12:20:19 +0200 Message-ID: <3FF15163.8060809@alkar.net> Date: Tue, 30 Dec 2003 12:20:19 +0200 From: Alexander Motin User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.6a) Gecko/20031202 X-Accept-Language: ru, en-us, en MIME-Version: 1.0 To: al vanyushenkov References: <20031230054214.8C30044B31@sumykhimprom.org.ua> In-Reply-To: <20031230054214.8C30044B31@sumykhimprom.org.ua> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit cc: freebsd-ipfw@freebsd.org Subject: Re: gray network and ipfw2 X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Dec 2003 10:20:23 -0000 al vanyushenkov wrote: > hi all > i have freebsd 4.8 installed and i use ipfw2 with the rules > #!/bin/sh > ipfw='/sbin/ipfw' > $ipfw -f flush > > $ipfw add divert natd all from any to any via ppp0 > $ipfw add allow log all from any to any ^^^^^ this rule matches packets on all innterfaces. Internal too. On internal interface you really have grey addresses. > > my local ethernet card has 192.168.133.7 ip address > and my ppp0 interface has 217.15.x.x ip address. > > when i tried to connect to 195.54.192.44:21 from my local box i got the lines > > Accept TCP 172.16.202.106:4802 195.54.192.44:21 out via ppp0 > Accept TCP 195.54.192.44:21 172.16.202.106:4802 in via ppp0 > and so on. > > as i know 172.16.0.0 are gray addresses and i haven't got any 172.16.x.x networks > in my environment. > Could anybody tell me what 172.16.202.106:4802 does in my log file. -- Alexander Motin mav@alkar.net ISP "Alkar-Teleport"