On Mon, Feb 18, 2002 at 11:08:02AM -0800, Julian Elischer wrote:
> that patch is an MFC of a fix that went into -current.
> it allows teh 'fwd' ing of packets from the 'input' filter to
> external machines..
>
> i.e.
> this doesn't work without this patch:
>
> ipfw add 100 fwd 1.2.3.4 tcp from any to 1.2.3.5 80 in recv fxp0
>
>
> On Mon, 18 Feb 2002, Luigi Rizzo wrote:
>
> > On Mon, Feb 18, 2002 at 09:31:13AM -0800, Crist J. Clark wrote:
> > > On Mon, Feb 18, 2002 at 12:01:17PM -0500, Michael R. Wayne wrote:
> > > > On Mon, Feb 18, 2002 at 05:49:46AM -0800, Crist J. Clark wrote:
> > > > > What precise version of FreeBSD are you running, BTW?
> > > >
> > > > 4.5 RELEASE, as stated in original message.
> > >
> > > Do these patches help?
> >
> > can you please summarise the problem and what the fix is trying to
> > achieve ?
Right. What I thought was happening was that the submitter did not
understand that ipfw(8) 'fwd' was only supposed to work on packets
leaving the system. At least that's what the documentation in -STABLE
claims. However, his logs seemed to indicate that packets were getting
'fwd'ed coming in. That's what's confusing me. So I gave him what
looked like a fix in -CURRENT that tries to get the incoming 'fwd's
correct.
My guess is that there is presently broken 'fwd'ing for incoming
packets in -STABLE. But as I have been saying, I haven't had the
chance/motivation to dig through the code or run the tests, so I can't
say that with too much certainty. Thought the submitter could do some
testing for us.
--
Crist J. Clark | [EMAIL PROTECTED]
| [EMAIL PROTECTED]
http://people.freebsd.org/~cjc/ | [EMAIL PROTECTED]
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
