ipfw bridge + fwd questions

Marcin Jessa lists at yazzy.org
Fri Sep 30 00:35:28 PDT 2005


On Fri, 30 Sep 2005 15:39:49 +0900
Ganbold <ganbold at micom.mng.net> wrote:

> Hi,
> 
> I have a question regarding ipfw fwd rule.
> I'm using FreeBSD 5.4-STABLE and running on it bridging firewall
> using ipfw.
> 
> Now my question comes:)
> Can I use ipfw fwd rules against traffic coming to one of the bridged 
> interfaces?
Yes you can.
sysctl net.link.ether.bridge_ipfw=1 just like in your sysctl variables.

> I would like to forward some packets (which are destined to port
> 110)
> to some other router through third vr0 interface.
Use a divert rule for that.

In this example we send all the port 80 traffic to port 8000:
# ipfw add 1000 divert 8000 tcp from any to any 80
Read this article for more info:
http://freebsd.rogness.net/snort_inline/

Cheers
Marcin.


More information about the freebsd-net mailing list