Date: Mon, 2 Jun 2003 16:27:10 -0700 (PDT) From: Paulo Roberto <nirv199@yahoo.com> To: freebsd-security@freebsd.org Subject: Re: Packet flow through IPFW+IPF+IPNAT ? Message-ID: <20030602232710.20360.qmail@web14908.mail.yahoo.com> In-Reply-To: <20030602200857.T6733-100000@cactus.fi.uba.ar>
next in thread | previous in thread | raw e-mail | index | archive | help
--- Fernando Gleiser <fgleiser@cactus.fi.uba.ar> wrote: > On Mon, 2 Jun 2003, Vlad GALU wrote: > Or, in other words, IPF always 'sees' the real IPs, not the NATed > ones. Is it also true for IPFW? Does the rules apply always to the real addresses instead of the natted ones? So why does the "divert natd" rule must be the first rule in ipfw? (in rc.firewall it is rule 00050). Is the packet reinserted on the queue, or it just wait a "pass" rule so it can be put on rule #00050 and go on? TIA Paulo Roberto __________________________________ Do you Yahoo!? Yahoo! Calendar - Free online calendar with sync to Outlook(TM). http://calendar.yahoo.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030602232710.20360.qmail>