ipfw bridge + fwd questions
Marcin Jessa
lists at yazzy.org
Fri Sep 30 00:35:28 PDT 2005
On Fri, 30 Sep 2005 15:39:49 +0900
Ganbold <ganbold at micom.mng.net> wrote:
> Hi,
>
> I have a question regarding ipfw fwd rule.
> I'm using FreeBSD 5.4-STABLE and running on it bridging firewall
> using ipfw.
>
> Now my question comes:)
> Can I use ipfw fwd rules against traffic coming to one of the bridged
> interfaces?
Yes you can.
sysctl net.link.ether.bridge_ipfw=1 just like in your sysctl variables.
> I would like to forward some packets (which are destined to port
> 110)
> to some other router through third vr0 interface.
Use a divert rule for that.
In this example we send all the port 80 traffic to port 8000:
# ipfw add 1000 divert 8000 tcp from any to any 80
Read this article for more info:
http://freebsd.rogness.net/snort_inline/
Cheers
Marcin.
More information about the freebsd-net
mailing list