Date: Fri, 23 May 2003 08:45:18 +0200 From: "Nikolay Kanchev" <nikolay.kanchev@amk-drives.bg> To: "Jer" <jeremy@multihaven.org> Cc: freebsd-security@freebsd.org Subject: Re: NAT+IPFW Message-ID: <001c01c320f6$e212ea80$0d00a8c0@amkdrives.bg> References: <5.2.0.9.2.20030522181931.00baf808@computer.multihaven.org>
index | next in thread | previous in thread | raw e-mail
Sent: Friday, May 23, 2003 12:22 AM Subject: NAT+IPFW > Dear all > > I need to do the following > > I have a fbsd router that runs nat and routes some public IP addresses > > I ned to use the ipfw rules to deny traffic from the public IP's AND the > nat o do bandwidth limiting > > eg > deny tcp from 192.168.200.1 to www.yahoo.com http out > and > deny tcp from 24.199.213.1 to www.yahoo.com http out > > my questions are where do I place the rules in relation to the divert rules etc > Hi after divert packets to NAT interface IPFW continue to check next rules after divert rule, therefore You should place your rules after divert rule. Best regards Nikolay Kanchevhome | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?001c01c320f6$e212ea80$0d00a8c0>