From owner-freebsd-net@FreeBSD.ORG Sat Jan 17 10:35:59 2004 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 866A816A4CE for ; Sat, 17 Jan 2004 10:35:59 -0800 (PST) Received: from mailtoaster1.pipeline.ch (mailtoaster1.pipeline.ch [62.48.0.70]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5784F43D45 for ; Sat, 17 Jan 2004 10:35:49 -0800 (PST) (envelope-from andre@freebsd.org) Received: (qmail 29221 invoked from network); 17 Jan 2004 18:35:48 -0000 Received: from unknown (HELO freebsd.org) ([62.48.0.54]) (envelope-sender ) by mailtoaster1.pipeline.ch (qmail-ldap-1.03) with SMTP for ; 17 Jan 2004 18:35:48 -0000 Message-ID: <40098084.E2FA06B0@freebsd.org> Date: Sat, 17 Jan 2004 19:35:48 +0100 From: Andre Oppermann X-Mailer: Mozilla 4.76 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: Xin LI References: <042601c3dcb0$de90c410$0401a8c0@phantasm205> <400976AA.169D1440@freebsd.org> <01ae01c3dd27$2f459c20$0401a8c0@phantasm205> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit cc: freebsd-net@FreeBSD.org Subject: Re: Newbie question: is net.inet.ip.fastforwarding intended for routersonly? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 17 Jan 2004 18:35:59 -0000 Xin LI wrote: > > Hi Andre, > > Thank you for the information. > > I have a NAT gateway running with the following ipnat.rules: > > ----------------------------------------------------------------------- > map fxp0 172.22.1.0/24 -> 0.0.0.0/32 proxy port ftp ftp/tcp > map fxp0 172.22.1.0/24 -> 0.0.0.0/32 portmap tcp/udp 1025:7999 > map fxp0 172.22.1.0/24 -> 0.0.0.0/32 portmap tcp/udp 49152:65535 > map fxp0 172.22.1.0/24 -> 0.0.0.0/32 > > # Internal Servers > rdr fxp0 0.0.0.0/0 port 8100 -> 172.22.1.1 port 8100 > rdr fxp0 0.0.0.0/0 port 3389 -> 172.22.1.1 port 3389 > ----------------------------------------------------------------------- > > And I have two if's installed, one is fxp0 (configured as > 192.168.122.253/24) and the other is dc0(configured as 172.22.1.254/24). > When the fastforwarding is set to 0, it works well, however if I turn it to > 1, the packets immediately stops to flow between the two if's. > (DEVICE_POLLING is enabled). > > So I guess I have done something wrong? Not so sure in this issue though... > Thanks in advance. What exact version of FreeBSD are you running? I must admit that I was only able to do limited tests with ipfilter. IPFW I could test to the full extent. The more information I get from you the better I can track down where the problem is. -- Andre > Xin LI > > ----- Original Message ----- > From: "Andre Oppermann" > To: "Xin LI" > Cc: > Sent: Sunday, January 18, 2004 1:53 AM > Subject: Re: Newbie question: is net.inet.ip.fastforwarding intended for > routersonly? > > > I have written a new fastforward code for 5.2 and -current which does > > everything including ipfw, NAT and ipfilter.