From owner-freebsd-ipfw  Tue May 14 13:55:30 2002
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mailgw3a.lmco.com (mailgw3a.lmco.com [192.35.35.7])
	by hub.freebsd.org (Postfix) with ESMTP id 00F6837B404
	for <freebsd-ipfw@FreeBSD.ORG>; Tue, 14 May 2002 13:55:25 -0700 (PDT)
Received: from emss01g01.ems.lmco.com ([129.197.181.54])
	by mailgw3a.lmco.com (8.11.6/8.11.6) with ESMTP id g4EKtMR11428;
	Tue, 14 May 2002 16:55:22 -0400 (EDT)
Received: from CONVERSION-DAEMON by lmco.com (PMDF V5.2-33 #38886) id <0GW400H01BGQGA@lmco.com>; Tue,
 14 May 2002 13:55:14 -0700 (PDT)
Received: from lmco.com ([129.197.20.43]) by lmco.com (PMDF V5.2-33 #38886) with ESMTP id <0GW40019WCGKPO@lmco.com>; Tue,
 14 May 2002 13:48:20 -0700 (PDT)
Date: Tue, 14 May 2002 13:45:10 -0700
From: rick norman <rick.norman@lmco.com>
Subject: Re: ipfw and aliases
To: cjclark@alum.mit.edu
Cc: freebsd-ipfw@FreeBSD.ORG
Message-id: <3CE17755.12735706@lmco.com>
MIME-version: 1.0
X-Mailer: Mozilla 4.79 [en] (WinNT; U)
Content-type: text/plain; charset=us-ascii
Content-transfer-encoding: 7BIT
X-Accept-Language: en
References: <3CDB2CED.DCC3092F@lmco.com> <20020511134633.A2824@blossom.cjclark.org> <3CE1599C.42071126@lmco.com>
 <20020514131100.A57077@blossom.cjclark.org>
Sender: owner-freebsd-ipfw@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-ipfw.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-ipfw>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-ipfw>
X-Loop: FreeBSD.ORG

I'm probably giving too little detail.  Basically I'm configuring bsd 4.5
as an intermediate node router in a fairly complex topology.  The different
aliases on an interface allow me to take different paths through this topology
based on the subnets.  What I want to do is apply different characteristics
to multiple data streams based on the subnet they take leaving my router.
The pkt only has src and des ip which says nothing about the path the routing
protocols have picked.  The rules that I see available in the ipfw would catch
all the aliases leaving on an interface with no differentiation.  It seems that
another key word, similar to the 'via' qualifier would allow me to individually
grab the outbound aliases.  The needed info is available in the routing table
in the form of the next hop router, I just don't see a way to grab a pkt based
on the next hop address or the outbound subnet.
Rick

"Crist J. Clark" wrote:

> On Tue, May 14, 2002 at 11:38:20AM -0700, rick norman wrote:
> > This is true for the inbound path, however for the outbound path the
> > info is available.  It should be possible to have a qualifier that recognizes
> >
> > the alias's independantly from the interface.
>
> I don't understand. The outbound path will be the next hop. The next
> hop is determined by the destination address of the packet and has
> nothing to do with local addresses on the machine.
>
> For packets from the local machine, you can use the source address.
> --
> Crist J. Clark                     |     cjclark@alum.mit.edu
>                                    |     cjclark@jhu.edu
> http://people.freebsd.org/~cjc/    |     cjc@freebsd.org
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-ipfw" in the body of the message


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message