Date: Sat, 20 Jul 1996 03:22:25 +1000 (EST) From: Darren Reed <avalon@coombs.anu.edu.au> To: noel@harleystreet.com (Noel Burton-Krahn) Cc: freebsd-hackers@freebsd.org Subject: Re: IP masquerading over tunel device Message-ID: <199607191722.KAA09210@freefall.freebsd.org> In-Reply-To: <01BB72FD.0E47CEE0@mcduck.harleystreet.com> from "Noel Burton-Krahn" at Jul 16, 96 09:56:26 am
next in thread | previous in thread | raw e-mail | index | archive | help
In some mail from Noel Burton-Krahn, sie said: > > I'm not sure what you mean by the "NAT implementation" in ipfilter. = > from the docs, I see that ipfilter can detect packets that would need to = > be edited in an IP masquerading sense, but can ipfilter remove those = > packets from the IP code in the kernel and re-insert edited packets? "re-insert" ? It just changes them on their way through. However, NAT wasn't `officially' part of IP Fitler until about 2 weeks ago, although it was present, when 3.1.0 was released (also made the transparent proxy stuff `official'). Have another look at the web pages, in particular this one: http://coombs.anu.edu.au/~avalon/ipfil-flow.html which shows how the various stages interact in how packets are passed through. Darren
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199607191722.KAA09210>