From owner-freebsd-ipfw@FreeBSD.ORG Wed Nov 28 04:09:37 2007 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0540716A418 for ; Wed, 28 Nov 2007 04:09:37 +0000 (UTC) (envelope-from sepherosa@gmail.com) Received: from an-out-0708.google.com (an-out-0708.google.com [209.85.132.245]) by mx1.freebsd.org (Postfix) with ESMTP id B04A913C46A for ; Wed, 28 Nov 2007 04:09:36 +0000 (UTC) (envelope-from sepherosa@gmail.com) Received: by an-out-0708.google.com with SMTP id c14so321535anc for ; Tue, 27 Nov 2007 20:09:35 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=TEOLf7AKDZWckMQfE18K81g3dy5WFmCHsY9s9T98mUs=; b=tg2cAfaAIOcIXV1fBBDIqrTugnewIrfKGxEteAvnBMIHHREzdaRMDuP///I4if7IQtlT+hd2AE50hDEs9/flj2R4XwlK6th/hprm3y7lsdIwHKRsHkNmX0ZHGOZG6/PYjVheomsIZK2CY3UCeTqZS4siFnaJ8wPeknJV3yReS6w= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=jmKpulyQOUlEC4H3MiuNFYIrBU3kWPS46sC+GXy+B8ryXsGmrHHfHxcx+nqCkoxXDtOT0LuaPb/Ksl9T0SzY3w0TxUnCVgKfQ6yQrB+6tYEBKOrXDRBF2algQdQudo5glqUbh8q9zh1qhHFTv+NwIA6xxZPSoNGqB6kl65Fa1fc= Received: by 10.65.54.9 with SMTP id g9mr10376269qbk.1196221231074; Tue, 27 Nov 2007 19:40:31 -0800 (PST) Received: by 10.64.149.18 with HTTP; Tue, 27 Nov 2007 19:40:31 -0800 (PST) Message-ID: Date: Wed, 28 Nov 2007 11:40:31 +0800 From: "Sepherosa Ziehau" To: freebsd-ipfw@freebsd.org In-Reply-To: <736c47cb0711271803o46dd89d8te49d5969fd358d15@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <736c47cb0711271803o46dd89d8te49d5969fd358d15@mail.gmail.com> Subject: Re: ipfw forwarding doesn't work - for more than 2 months. --- please help X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 28 Nov 2007 04:09:37 -0000 On Nov 28, 2007 10:03 AM, Sam Wun wrote: > Hi, > > I setup the following ipfw rules in freebsd 6.2: > belmore# ipfw list > 00001 allow udp from any to any dst-port 500 > 00001 allow esp from any to any > 00001 allow esp from any to any > 00001 allow ipencap from any to any > 00001 allow ipencap from any to any > 00020 fwd 192.168.1.222 ip from any to 220.233.24.213 dst-port 80 in I don't think this does the rdr you intended. Please take a look at ipfw manpage. Best Regards, sephe > I don't know what is wrong that the freebsd server (6.2) can't > redirect/forward http request to an internal server (web server - > 192.168.1.222). > > Can anyone please give suggestion to modify this rules? > Or can you please post your workable ipfw rules that achieved the same goal? > > Thanks > S > _______________________________________________ > freebsd-ipfw@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw > To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org" > -- Live Free or Die