Date: Fri, 23 May 2003 08:45:18 +0200 From: "Nikolay Kanchev" <nikolay.kanchev@amk-drives.bg> To: "Jer" <jeremy@multihaven.org> Cc: freebsd-security@freebsd.org Subject: Re: NAT+IPFW Message-ID: <001c01c320f6$e212ea80$0d00a8c0@amkdrives.bg> References: <5.2.0.9.2.20030522181931.00baf808@computer.multihaven.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Sent: Friday, May 23, 2003 12:22 AM Subject: NAT+IPFW > Dear all > > I need to do the following > > I have a fbsd router that runs nat and routes some public IP addresses > > I ned to use the ipfw rules to deny traffic from the public IP's AND the > nat o do bandwidth limiting > > eg > deny tcp from 192.168.200.1 to www.yahoo.com http out > and > deny tcp from 24.199.213.1 to www.yahoo.com http out > > my questions are where do I place the rules in relation to the divert rules etc > Hi after divert packets to NAT interface IPFW continue to check next rules after divert rule, therefore You should place your rules after divert rule. Best regards Nikolay Kanchev
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?001c01c320f6$e212ea80$0d00a8c0>