Date: Tue, 8 Aug 2000 12:53:32 +0300 From: Ruslan Ermilov <ru@sunbay.com> To: "G.B.Naidu" <gbnaidu@sasi.com> Cc: freebsd-net@FreeBSD.org Subject: Re: divert rule in ipfw... Message-ID: <20000808125332.A17316@sunbay.com> In-Reply-To: <Pine.LNX.4.21.0008081435000.779-100000@pcd75.sasi.com>; from gbnaidu@sasi.com on Tue, Aug 08, 2000 at 02:39:25PM %2B0530 References: <Pine.LNX.4.21.0008081435000.779-100000@pcd75.sasi.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Aug 08, 2000 at 02:39:25PM +0530, G.B.Naidu wrote: > > Hi, > > I have a ipfw rule like this: > > ipfw add divert natd all from any to any via de0 > > This will divert all packets to natd. But I would like to divert all > packets except the packets generated from the machine say 10.0.16.63 where > the natd is running. For this I tried to use some thing like this: > > ipfw add divert natd not 10.0.16.63 to not 10.0.16.63 via de0 > > Still looks like it diverts all the packets. Can some body let me know > how do I avoid divreting packets generated from the machine where the natd > is running. > The above rule works like expected here. You can always add a `log' keyword to it and see what actual packets match the rule. Cheers, -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000808125332.A17316>