FreeBSD 7.1 IPv6 multihoming problem
Giuliano Gavazzi
dev+lists at humph.com
Tue Apr 7 05:32:22 PDT 2009
On T 7 Apr, 2009, at 10:37 , Zöld wrote:
> Hi all!
>
> I think my problem is solved. As I mentioned earlier the ipfw fwd
> hasn't got
> any effect (under FreeBSD 7.1), but pf (packet filter) can forward
> among the
> interfaces too.
>
> Here are the commands:
> kldload pf
>
> /etc/pf.conf:
> pass out quick route-to (interface1_name gateway1_address) from
> interface1_address to any
> pass out quick route-to (interface2_name gateway2_address) from
> interface2_address to any
>
> pf -e -f /etc/pf.conf
>
> Now the packets leave the computer over the proper interface
> independent of
> the default gateway.
very good! unfortunately pf hasn't been ported to the macosx kernel
yet...
Just a warning, on MacOS X I had kernel panics, when reloading rules,
in some place inherited from BSD (netinet/ip_fw2.c) and I think they
were triggered by a fwd to the default gateway. In other words, if a
packet does not need to be re-routed (that is it should go to the
default gateway), do not use a fwd, make it an allow rule instead
(don't know what this is called in pf... pass) as this will have the
same net effect. I might be completely wrong about this panic and
might not apply to FreeBSD or pf, of course, but still I see no point
in routing explicitly what will be routed correctly anyway.
Giuliano
More information about the freebsd-ipfw
mailing list