ipfw with nat - allowing by MAC address
AT Matik
asstec at matik.com.br
Fri Apr 20 12:23:14 UTC 2007
On Thursday 19 April 2007 18:00, Lubomir Georgiev wrote:
> Hi all,
>
> I've lost 2 nights sleep over this and I still can't get through it! -
> Here's the thing :
>
> I have a FreeBSD box with ipfw and natd running.
> My internal ifaces are
> internal - xl0 /3com/ - ip 192.168.1.254
> external - fxp0 - 10.11.0.33
>
> ipfw l
> 00200 skipto 1200 ip from 192.168.1.100 to not me via fxp0
> #00400 skipto 1200 ip from 192.168.1.0/24 to not me layer2 out
> #00600 skipto 1200 ip from any to any MAC any 00:19:d2:36:b8:48 layer2 in
you will not have so much luck with this until you are loading the bridge or
if_bridge module, on a router this will not work
João
A mensagem foi scaneada pelo sistema de e-mail e pode ser considerada segura.
Service fornecido pelo Datacenter Matik https://datacenter.matik.com.br
More information about the freebsd-ipfw
mailing list