linux iproute2 replacement

Tillman Hodgson tillman at seekingfire.com
Tue Mar 7 16:11:55 UTC 2006


On Tue, Mar 07, 2006 at 06:07:48PM +0200, Petre Bandac wrote:
> On Tue, 7 Mar 2006 09:49:51 -0600 Anno Domini, the honourable Tillman
> Hodgson wrote using one of his keyboards:
> 
> > On Tue, Mar 07, 2006 at 12:58:59PM +0200, Petre Bandac wrote:
> > > hallo
> > > 
> > > I am trying to migrate a dual-homed linux box to freebsd; how can I
> > > achieve the src routing iproute2 does on freebsd ?
> > 
> > There isn't currently a direct routing equivalent. I "cheat" and use
> > IPF like so (the IPs are faked):
> > 
> > # source-IP routed traffic
> > # Note that the "on 'interface'" has to be the one with my default
> > route pass out quick on hme0 to tun6 from 10.0.0.3/24
> > to !192.168.0.0/16 keep state block in on tun6 from any to
> > 10.0.0.3/24 head 200 ... group 200 rules follow ...
> > 
> > You can do the same with IPFW and PF.
>
> <shameless>hoping for a full solution :)</shameless>

I seem to recall that it was on Andre's "to-do" list of network
improvements. I have no idea where that's at, though. I'd also love a
full set of policy routing capabilities ... enough rope to do sometime
silly, at least ;-)

> can it be done only with ipfw ? if yes, how ?

With the "fwd" keyword, as per the man page.

-T


-- 
"The future arrives one day at a time. It's like the frog in the pot."
    -- Ernest Lilley


More information about the freebsd-questions mailing list