Freebsd 10.2 amd64 netmap ipfw
Archy Cho
archycho at gmail.com
Sat Oct 10 09:31:41 UTC 2015
Dear Jim
Sorry , maybe my poor english.
My freebsd box have 4 interfaces , 2ix and 2igb .
I connect ssh via igb0.
What I am facing is , I have re-compiled kernel to have netmap.ko ,
a router box (just static routes ) with ix0 and ix1.
I compile the kipfw and run “ ./kipfw netmap:ix0 netmap:ix1 “ ,
all connection with ix0 and ix1 will getting blocked ,
my ipfw rules is only one line “ add 65534 pass ip from any to any” .
My question is , do netmap with ipfw could be used for a production filtering box ?
I google around and see someone was working but I could not get full documents for installation or testing.
Thanks for advise.
Archy Cho
> Jim Thompson <jim at netgate.com> 於 2015年10月10日 上午1:14 寫道:
>
>
>> On Oct 9, 2015, at 7:14 AM, Archy Cho <archycho at gmail.com> wrote:
>>
>> I think I must misunderstand something , could anyone send me advise?
>> Or any documents could help to build a NETMAP IPFW firewall box ?
>
> See the last several paragraphs of:
>
> https://github.com/luigirizzo/netmap-ipfw/blob/next/README
>
> Note that the "telnet localhost 5566" traffic generator hack mentioned in the README doesn't work without a recompile, but you won't need it for running real traffic.
>
> Jim
>
More information about the freebsd-net
mailing list