From owner-freebsd-questions Thu Jun 27 1:47:54 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mail.npubs.com (npubs.com [207.111.208.224]) by hub.freebsd.org (Postfix) with ESMTP id 8313237B400 for ; Thu, 27 Jun 2002 01:47:46 -0700 (PDT) Received: 8.12.2-(Neptune) From: "Nielsen" To: "Matt Impett" , "freebsd questions" References: <8C92E23A3E87FB479988285F9E22BE46FDE777@ftmail.lab.flarion.com> Subject: Re: source address based routing MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Message-Id: <20020627084746.8313237B400@hub.freebsd.org> Date: Thu, 27 Jun 2002 01:47:46 -0700 (PDT) Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Use ipf with the fastroute action. This lets you short circuit a packet to an interface rather than an IP. Sounds closer to what you want to do. HTH Nate Nielsen ----- Original Message ----- From: "Matt Impett" To: "'Lars Eggert'" ; "Matt Impett" Cc: ; Sent: Wednesday, June 26, 2002 18:13 Subject: RE: source address based routing > I have looked at the firewall rather exetensively, but I don't know that it > can do what I want. > > >From what I can tell, the firewall fwd functionality allows you to redirect > a packet to a different next hop based on any of the firewall matching rules > (one of which is source address). > > What I want to do, however, is redirect the packet to a tunnel (gif device) > that has no next-hop associated with it. Is there any way to do this?? > > thanks, > matt > > > -----Original Message----- > > From: Lars Eggert [mailto:larse@ISI.EDU] > > Sent: Wednesday, June 26, 2002 4:41 PM > > To: Matt Impett > > Cc: 'freebsd-net@freebsd.org'; 'freebsd-questions@freebsd.org' > > Subject: Re: source address based routing > > > > > > Matt Impett wrote: > > > I was wondering if it is possible to do pure source address > > based routing > > > under FreeBSD. What I really want to do is route packets > > from particular > > > source addresses to tunnels (gif devices) regardless of > > what the packet's > > > destination address is. > > > > Firewall forwarding will do that, see ipfw (8), esp. the fwd action. > > > > Lars > > -- > > Lars Eggert USC Information > > Sciences Institute > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message