ipfw with four interfaces
Micheal Patterson
micheal at tsgincorporated.com
Wed Sep 3 07:34:44 PDT 2003
----- Original Message -----
From: "Arvinn Lokkebakken" <arvinn at sandakerveien.net>
To: <freebsd-questions at freebsd.org>
Sent: Wednesday, September 03, 2003 7:24 AM
Subject: Re: ipfw with four interfaces
<snip>
> Haven't been able to try them out yet, but I don't feel allowing The
> first 300 rule will probably help me having the firewall allowing
> traffic for me, but I wasn't really planning to allow everything in. And
> will deny rules have effect when the traffic allready is allowed?
>
> Arvinn
>
Disregard my firewall ruleset for the time being. Do you have this system
configured to be a gateway unit? If not, no traffic will pass interface
boundaries.If your interface setup is this:
fxp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet w.x.y.81 netmask 0xfffffff0 broadcast w.x.y.95
xl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet 192.168.0.1 netmask 0xffffff00 broadcast 192.168.0.255
xl1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet 172.16.0.1 netmask 0xffffff00 broadcast 172.16.0.255
xl2 is the interface that is connected back-to-back with the router.
Also, from the info above, xl2 connects to the router via a crossover cable.
If so, does it pull and IP? If so, it needs to be something other than the
x.w.y.81, 192.168.0.1 or 172.16.0.1 network.
--
Micheal Patterson
TSG Network Administration
405-917-0600
Confidentiality Notice: This e-mail message, including any attachments, is
for the sole use of the intended recipient(s) and may contain confidential
and privileged information. Any unauthorized review, use, disclosure or
distribution is prohibited. If you are not the intended recipient, please
contact the sender by reply e-mail and destroy all copies of the original
message.
More information about the freebsd-questions
mailing list