Date: Sat, 17 Jan 2004 19:35:48 +0100 From: Andre Oppermann <andre@freebsd.org> To: Xin LI <delphij@frontfree.net> Cc: freebsd-net@FreeBSD.org Subject: Re: Newbie question: is net.inet.ip.fastforwarding intended for routersonly? Message-ID: <40098084.E2FA06B0@freebsd.org> References: <042601c3dcb0$de90c410$0401a8c0@phantasm205> <400976AA.169D1440@freebsd.org> <01ae01c3dd27$2f459c20$0401a8c0@phantasm205>
next in thread | previous in thread | raw e-mail | index | archive | help
Xin LI wrote: > > Hi Andre, > > Thank you for the information. > > I have a NAT gateway running with the following ipnat.rules: > > ----------------------------------------------------------------------- > map fxp0 172.22.1.0/24 -> 0.0.0.0/32 proxy port ftp ftp/tcp > map fxp0 172.22.1.0/24 -> 0.0.0.0/32 portmap tcp/udp 1025:7999 > map fxp0 172.22.1.0/24 -> 0.0.0.0/32 portmap tcp/udp 49152:65535 > map fxp0 172.22.1.0/24 -> 0.0.0.0/32 > > # Internal Servers > rdr fxp0 0.0.0.0/0 port 8100 -> 172.22.1.1 port 8100 > rdr fxp0 0.0.0.0/0 port 3389 -> 172.22.1.1 port 3389 > ----------------------------------------------------------------------- > > And I have two if's installed, one is fxp0 (configured as > 192.168.122.253/24) and the other is dc0(configured as 172.22.1.254/24). > When the fastforwarding is set to 0, it works well, however if I turn it to > 1, the packets immediately stops to flow between the two if's. > (DEVICE_POLLING is enabled). > > So I guess I have done something wrong? Not so sure in this issue though... > Thanks in advance. What exact version of FreeBSD are you running? I must admit that I was only able to do limited tests with ipfilter. IPFW I could test to the full extent. The more information I get from you the better I can track down where the problem is. -- Andre > Xin LI > > ----- Original Message ----- > From: "Andre Oppermann" <andre@freebsd.org> > To: "Xin LI" <delphij@frontfree.net> > Cc: <freebsd-net@FreeBSD.org> > Sent: Sunday, January 18, 2004 1:53 AM > Subject: Re: Newbie question: is net.inet.ip.fastforwarding intended for > routersonly? > > > I have written a new fastforward code for 5.2 and -current which does > > everything including ipfw, NAT and ipfilter.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?40098084.E2FA06B0>