From owner-freebsd-ipfw Wed Feb 13 0:53:59 2002 Delivered-To: freebsd-ipfw@freebsd.org Received: from relay1.jet.msk.su (relay1.jet.msk.su [194.87.88.34]) by hub.freebsd.org (Postfix) with ESMTP id 92EBD37B402 for ; Wed, 13 Feb 2002 00:53:55 -0800 (PST) Received: from tiger ([193.124.4.1] helo=tiger.jet.msk.su) by relay1.jet.msk.su with smtp (Exim 3.22 #1) id 16avAk-0007Vo-00 for ipfw@freebsd.org; Wed, 13 Feb 2002 11:53:51 +0300 Received: from eel.service.jet.msk.su [192.168.10.183] by tiger.jet.msk.su with esmtp (Exim 1.73 #2) id 16avAh-0000kV-00; Wed, 13 Feb 2002 11:53:47 +0300 Message-ID: <3C6A38F2.8B65E6EC@jet.msk.su> Date: Wed, 13 Feb 2002 11:59:14 +0200 From: "Andrew V. Jemerya" Organization: Jet Infosystems X-Mailer: Mozilla 4.79 [en] (X11; U; SunOS 5.8 i86pc) X-Accept-Language: en MIME-Version: 1.0 To: ipfw@freebsd.org Subject: keep-state rule before nat Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi, guys! I had some trouble with keep-state rules recently. My firewall rules are the folowing: check-state allow tcp from any to xxxx 25 keep-state allow udp from any 53 to xxx 53 keep-state divert natd from 192.168.0.0/24 to any out via rl0 divert from any to xxx in via rl0 allow all from 192.168.0.4 to any via rl1 keep-state This construction doen't work properly, but exactly it doesn't work at all What can I do for this situation? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message