From owner-freebsd-questions Mon Feb 5 3:16:25 2001 Delivered-To: freebsd-questions@freebsd.org Received: from looney.co.za (bubbles.looney.co.za [196.4.160.102]) by hub.freebsd.org (Postfix) with ESMTP id 0CCBC37B401 for ; Mon, 5 Feb 2001 03:16:07 -0800 (PST) Received: by looney.co.za (Postfix, from userid 1332) id 0216B5804; Mon, 5 Feb 2001 13:16:08 +0200 (SAST) Date: Mon, 5 Feb 2001 13:16:08 +0200 From: Marc Silver To: Pater Pandoson Cc: so@server.i-clue.de, "freebsd-questions@FreeBSD.ORG" Subject: Re: ipfw divert Message-ID: <20010205131608.A22925@looney.co.za> References: <3A7E6421.8D0E6E27@eCoNeed.com> <3A7E6AF4.7F78064A@i-clue.de> <3A7E873F.12A346A6@eCoNeed.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3A7E873F.12A346A6@eCoNeed.com>; from ppandoson@eCoNeed.com on Mon, Feb 05, 2001 at 10:58:07AM +0000 X-Operating-System: Linux 2.2.18 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I think this may help: First of all you'll need to add the following option to your kernel: options IPFIREWALL_FORWARD #enable transparent proxy support Once you've done this, you can add a rule like this to your firewall which will forward connections on certain ports to other machines on your network ( I think anyway ) : ipfw add fwd 192.168.0.1,80 tcp from any to ${ip} 80 setup ${ip} is in this example your outside interface (ie. tun0). Cheers, Marc On Mon, Feb 05, 2001 at 10:58:07AM +0000, Pater Pandoson wrote: > Thanks for that, it seems to work just fine for me. > But I still think this is posable with ipfw rules, any helpers? > > Pater To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message