From owner-freebsd-questions Thu Feb 17 21:51: 2 2000 Delivered-To: freebsd-questions@freebsd.org Received: from frontier.netnology.com.au (frontier.netnology.com.au [203.33.30.19]) by hub.freebsd.org (Postfix) with ESMTP id C76EE37BA2D for ; Thu, 17 Feb 2000 21:50:57 -0800 (PST) (envelope-from craig@hotmix.com.au) Received: from marvin ([203.33.30.209]) by frontier.netnology.com.au (8.8.7/8.8.7) with SMTP id OAA12046 for ; Fri, 18 Feb 2000 14:26:51 +0800 From: "Craig Beasland" To: Subject: IPFW Rules Date: Fri, 18 Feb 2000 13:44:50 +0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi there, I am trying to set up IPFW rules for calculating traffic to each workstation in my subnet. Currently, we use 192.168.168.100 - 192.168.168.200 for the workstations and 192.168.168.250 as the gateway. The gateway is a freebsd box running ppp -ddial -alias myisp. The connection works great, but now I want to calculate who is using how much internet so I set up IPFW rules like ipfw add allow tcp from 192.168.168.100 to any 80 ipfw add allow tcp from 192.168.168.100 to any 25 ipfw add allow tcp from 192.168.168.100 to any 21 ipfw add allow ip from 192.168.168.100 to any ipfw add allow tcp from any to 192.168.168.100 80 ipfw add allow tcp from any to 192.168.168.100 110 ipfw add allow tcp from any to 192.168.168.100 21 ipfw add allow ip from any to 192.168.168.100 This FreeBSD box also runs an apache proxy server on port 80. However, the "return" data does not seem to be calculated, all the values for ipfw -a list show as 0. Is this a problem with the -alias option to ppp. Should I use NATD for the aliasing instead? Thanks craig To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message