From owner-freebsd-net@FreeBSD.ORG Sat Jan 27 16:52:02 2007 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 3DAEC16A400 for ; Sat, 27 Jan 2007 16:52:02 +0000 (UTC) (envelope-from rizzo@icir.org) Received: from xorpc.icir.org (xorpc.icir.org [192.150.187.68]) by mx1.freebsd.org (Postfix) with ESMTP id 2AB3613C46C for ; Sat, 27 Jan 2007 16:52:02 +0000 (UTC) (envelope-from rizzo@icir.org) Received: from xorpc.icir.org (localhost [127.0.0.1]) by xorpc.icir.org (8.12.11/8.13.6) with ESMTP id l0RGq1rH001881; Sat, 27 Jan 2007 08:52:01 -0800 (PST) (envelope-from rizzo@xorpc.icir.org) Received: (from rizzo@localhost) by xorpc.icir.org (8.12.11/8.12.3/Submit) id l0RGq11H001880; Sat, 27 Jan 2007 08:52:01 -0800 (PST) (envelope-from rizzo) Date: Sat, 27 Jan 2007 08:52:01 -0800 From: Luigi Rizzo To: antonio.tommasi@unile.it Message-ID: <20070127085201.A1868@xorpc.icir.org> References: <10239.151.50.247.45.1169914849.squirrel@webmail.ilenic.unile.it> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <10239.151.50.247.45.1169914849.squirrel@webmail.ilenic.unile.it>; from antonio.tommasi@unile.it on Sat, Jan 27, 2007 at 05:20:49PM +0100 Cc: freebsd-net@freebsd.org Subject: Re: Filtering Bridge Traffic on layer IP X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 27 Jan 2007 16:52:02 -0000 On Sat, Jan 27, 2007 at 05:20:49PM +0100, antonio.tommasi@unile.it wrote: > Hi to all, > i've configured a freebsd box bridge. This machine have 2 ethernet card > and i configure them with one ip address. I also configure firewalling > with ipfw on this box. > Is there a possibility to filter bridged traffic with ipfw on layer IP? guarda http://info.iet.unipi.it/~luigi/ip_dummynet/ ciao luigi > I need to allow some machine with some ip to access to internet and the > other not. > I cannot implemet nat-firewalling because i need to not change actual ip > configuration on my lan. > Have you any suggestion? > Thanks in advance > Antonio > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"