IPFW: Need some help
Ruben de Groot
mail25 at bzerk.org
Sun Jun 28 14:45:47 UTC 2009
On Sun, Jun 28, 2009 at 02:14:00PM +0300, Anton typed:
>
> Hello all,
>
> I'm new to *nix and now, while configuring IPFW Firewall on FreeBSD
> 7.2 = has stuck in a problem:
>
> After packet from my network is passed to natd demon - it is returning
> t= o firewall (it is normal, as I think ;-) ), but I see another
> abnormal thin= g: when it is returned to firewall, it does not come
> under rule which state= s to allow packet from some host in my
> network, and goes under rule which a= llows packets from FreeBSD box.
This is normal.
That's because the source address has allready been rewritten by natd, so
your rule about a specific host in your network doesn't apply anymore.
Try moving this rule before the divert rule in your ipfw config.
Ruben
More information about the freebsd-questions
mailing list