Packet flow through IPFW+IPF+IPNAT ?
nirv199 at yahoo.com
Mon Jun 2 16:27:11 PDT 2003
--- Fernando Gleiser <fgleiser at cactus.fi.uba.ar> wrote:
> On Mon, 2 Jun 2003, Vlad GALU wrote:
> Or, in other words, IPF always 'sees' the real IPs, not the NATed
Is it also true for IPFW? Does the rules apply always to the real
addresses instead of the natted ones? So why does the "divert natd"
rule must be the first rule in ipfw? (in rc.firewall it is rule 00050).
Is the packet reinserted on the queue, or it just wait a "pass" rule so
it can be put on rule #00050 and go on?
Do you Yahoo!?
Yahoo! Calendar - Free online calendar with sync to Outlook(TM).
More information about the freebsd-security