Date: Fri, 28 Dec 2001 18:45:16 -0800 From: "Crist J . Clark" <cristjc@earthlink.net> To: Julian Elischer <julian@elischer.org> Cc: Henry Su <henrysu@nttmcl.com>, freebsd-net@FreeBSD.ORG Subject: Re: Why is my ipfw(8) ``fwd'' rule to redirect a service to another machine not working? Message-ID: <20011228184516.B93411@blossom.cjclark.org> In-Reply-To: <Pine.BSF.4.21.0112281326060.94344-100000@InterJet.elischer.org>; from julian@elischer.org on Fri, Dec 28, 2001 at 01:31:07PM -0800 References: <20011227231922.N2090@blossom.cjclark.org> <Pine.BSF.4.21.0112281326060.94344-100000@InterJet.elischer.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Dec 28, 2001 at 01:31:07PM -0800, Julian Elischer wrote:
> You need to
> correct the FAQ..
>
> "The correct way to ensure that this does not happen is to also add
> a 'fwd' rule on the destination rule, forwarding the packet
> to localhost. This will override the destination machine's tendancy
> to throw the forwarded packet back"
I'm having a hard time parsing that.
> Also, in versions of FreeBSD before 4.6,
4.6?
> packets matched while INCOMING
> could only be forwarded to the local host.
Which is what I thought the original poster was doing?
> Outgoing packets
> could be forwarded to an adjoining host.
> This was fixed while 4.5 was cooking and appeared in releases after that.
So will this be in 4.5?
> The port number is only used for forwarding to the local host.
Which is what the original poster was doing?
--
"It's always funny until someone gets hurt. Then it's hilarious."
Crist J. Clark | cjclark@alum.mit.edu
| cjclark@jhu.edu
http://people.freebsd.org/~cjc/ | cjc@freebsd.org
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011228184516.B93411>