From owner-freebsd-ipfw Fri May 10 9:31: 2 2002 Delivered-To: freebsd-ipfw@freebsd.org Received: from mailgw3a.lmco.com (mailgw3a.lmco.com [192.35.35.7]) by hub.freebsd.org (Postfix) with ESMTP id 69F8737B400 for ; Fri, 10 May 2002 09:30:57 -0700 (PDT) Received: from emss01g01.ems.lmco.com ([129.197.181.54]) by mailgw3a.lmco.com (8.11.6/8.11.6) with ESMTP id g4AGUuS27473 for ; Fri, 10 May 2002 12:30:56 -0400 (EDT) Received: from CONVERSION-DAEMON by lmco.com (PMDF V5.2-33 #38886) id <0GVW00H01LVJE0@lmco.com> for freebsd-ipfw@freebsd.org; Fri, 10 May 2002 09:30:55 -0700 (PDT) Received: from lmco.com ([129.197.20.43]) by lmco.com (PMDF V5.2-33 #38886) with ESMTP id <0GVW00OJ4LVF8B@lmco.com> for freebsd-ipfw@freebsd.org; Fri, 10 May 2002 09:30:51 -0700 (PDT) Date: Fri, 10 May 2002 09:28:04 -0700 From: rick norman Subject: [Fwd: ipfw and aliases] To: freebsd-ipfw@freebsd.org Message-id: <3CDBF514.EBADB9E2@lmco.com> MIME-version: 1.0 X-Mailer: Mozilla 4.79 [en] (WinNT; U) Content-type: multipart/mixed; boundary="Boundary_(ID_omZN7cLyAGRu7Cvsdr3oSQ)" X-Accept-Language: en Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG This is a multi-part message in MIME format. --Boundary_(ID_omZN7cLyAGRu7Cvsdr3oSQ) Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT --Boundary_(ID_omZN7cLyAGRu7Cvsdr3oSQ) Content-type: message/rfc822 Date: Fri, 10 May 2002 09:27:05 -0700 From: rick norman Subject: Re: ipfw and aliases To: Robert bobb Crosbie Message-id: <3CDBF4D9.BE5AA279@lmco.com> MIME-version: 1.0 X-Mailer: Mozilla 4.79 [en] (WinNT; U) Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT X-Mozilla-Status2: 00000000 X-Accept-Language: en References: <3CDB2CED.DCC3092F@lmco.com> <20020510111532.A33197@flipflop.tchpc.tcd.ie> I tried that but via with an ip addr catches all the aliases going out the interface, not just the requested one. Any other ideas ? Rick Robert bobb Crosbie wrote: > rick norman hath declared on Thursday the 09 day of May 2002 :-: > > Is it possible to write a firewall rule for a router with one interface > > with multiple aliased ip > > addresses that will grab pkts based on the IP_alias they are routed in > > or out on, rather than the src or des address of the pkt. It looks as > > tho the 'via' qualifier lumps all the aliases for an interface > > together. I would like to grab pkts, not based on the src and des > > contained in the packet, but rather based on which IP_alias it is going > > to be sent out on. > > You can use via with an IP address or interface. > > - bobb --Boundary_(ID_omZN7cLyAGRu7Cvsdr3oSQ)-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message