FWD under bridged enviroment...
Kelly Yancey
kbyanc at posi.net
Tue Aug 17 13:00:13 PDT 2004
On Mon, 16 Aug 2004, Patrick Tracanelli wrote:
>
> Should the fwd action work with the code revision available today under
> 5_2 branch (5.2.1-RELEASE-p8)?
>
> The enviroment is xl0 and xl1 bridged in the sabe cluster, ahd xl2
> available only to host registered IP and be available online. The fwd
> action fordwards to the same machine...
>
> bridged firewalling is enabled, the interesting thing is that the fwd
> rule counts packets and bytes as usual, but the forwarded port gets no
> action.. (ie, no connection is logged);
>
> other behaviour is that if I get only the fwd rule that fordwards to
> somewhere not available, usually the traffic gets stopped (obviously,
> since they are forwarded to somewhere and gets nothing there) but under
> this bridged setup the traffic stills flows, as if there were no fwd
> rule (but it is still counting packets)...
>
> any clue? :)
>
> I remember code were available to allow fwd under bridged enviroment, I
> want to know if it was commited and is supposed to work :}
>
I believe I've mentioned having code to implement fwd for IPv4 packets
filtered from ether_input (net.link.ether.ipfw=1). Unfortunately, the
patches are against 4.10. If someone else doesn't implement it before
then, I plan on porting the functionality to 6-current (and then backport
to 5-stable) after 5.3 is released.
Kelly
--
Kelly Yancey -- kbyanc@{posi.net,FreeBSD.org} -- kelly at nttmcl.com
More information about the freebsd-ipfw
mailing list