Date: Fri, 12 Aug 2005 17:21:39 +0100 From: Rod <rod@supanet.net.uk> To: Max Laier <max@love2party.net> Cc: freebsd-pf@freebsd.org Subject: Re: Bridge and PF Message-ID: <1123863698.22864.266.camel@torgau.office.netline.net.uk> In-Reply-To: <200508121751.27737.max@love2party.net> References: <1123858936.22864.252.camel@torgau.office.netline.net.uk> <1123861547.22864.256.camel@torgau.office.netline.net.uk> <200508121751.27737.max@love2party.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--=-7a7Dug74Hy4Q2wJbwthf Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Unfortunately can't use a beta in the current environment and require stateful filtering, on this occasion looks like we will be using OpenBSD, but looking forward to FreeBSD6.0 Release.=20 On Fri, 2005-08-12 at 16:51, Max Laier wrote: > On Friday 12 August 2005 17:45, Rod wrote: > > Found my answer : > > > > http://lists.freebsd.org/mailman/htdig/freebsd-pf/2005-April/000984.htm= l > > > > >FreeBSD has no support for pf in its bridge code. > > >Neither has it IPv6 support. >=20 > This is not true. As Scott suggested try if_bridge in 6.0 which has both= IPv6=20 > and full pf support. Additionally, pf is supported by the old bridge jus= t=20 > use the same settings you would use for ipf. The old bridge does not all= ow=20 > for stateful filtering however. The same is true for ipf and ipfw with t= he=20 > old bridge code. >=20 > > On Fri, 2005-08-12 at 16:02, Rod wrote: > > > Hi, > > > > > > Does anyone know if their is a setting similar to that of ipf and ipf= w > > > for setting bridged devices to use a firewall in sysctl e.g. > > > > > > for ipfw: > > > > > > net.link.ether.bridge.ipfw=3D1 > > > > > > for ipf > > > > > > net.link.ether.bridge.ipfw=3D1 > > > > > > Guessed at net.link.ether.bridge.pf=3D1 but no such luck. Is this at = all > > > possible with PF on freebsd? > > > > > > kind regards > > > > > > Rod --=-7a7Dug74Hy4Q2wJbwthf Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQBC/MySSKw3AiKIO7sRAmhvAJ0fzBD82cdbjXp4O9LtBzR2NXWRLACeJ1MX EwQtHVVKbeK+OYxqBwdjXiA= =F7tH -----END PGP SIGNATURE----- --=-7a7Dug74Hy4Q2wJbwthf--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1123863698.22864.266.camel>