pf and policy routing
Max Laier
max at love2party.net
Thu Jun 22 16:36:28 UTC 2006
On Thursday 22 June 2006 17:53, Sébastien AVELINE wrote:
> I would like to have some advises on pf. I'd like to use pf for
> clustering a firewall and using pfsync.
> Actually I use a Linux Box to do this. The problem is that I have
> specific rules for routing with iproute2 because I got a lot of
> different subnets with multi-homing. It seems that freebsd support
> policy routing only with ipfw.
> My question is : is it possible to use ipfw just for policy routing and
> pf just for packet filtering ?
> For example I want to to do something like that :
>
> I had a default gateway (a) but if I received a packet from subnet(c) to
> subnet(d) --> use an another default gateway(y)
> a
> packet from subnet(a) to subnet(x) --> use an another default gateway(y)
>
>
> I wonder if route-to of pf is good for my exemple or if I should try
> something else like ipfw for routing and pf for firewalling as I said
> above. Actually I'm using freebsd 6.1 for some tests.
>
> Thanx for your answers.
http://openbsd.org/faq/pf/pools.html#outgoing
--
/"\ Best regards, | mlaier at freebsd.org
\ / Max Laier | ICQ #67774661
X http://pf4freebsd.love2party.net/ | mlaier at EFnet
/ \ ASCII Ribbon Campaign | Against HTML Mail and News
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-pf/attachments/20060622/d143723c/attachment.pgp
More information about the freebsd-pf
mailing list