On Sat, Apr 06, 2002 at 01:57:44PM -0600, Nick Rogness wrote:
> On Fri, 5 Apr 2002, Matthew D. Fuller wrote:
>
> > On Fri, Apr 05, 2002 at 06:48:09PM -0600 I heard the voice of
> > Nick Rogness, and lo! it spake thus:
> > > On Fri, 5 Apr 2002, Alex Rousskov wrote:
> > > >
> > > > - Is it possible without kernel modifications? How?
> > >
> > > AFAIK, No. Your only 2 possiblities that I could think of would
> > > be to use policy routing or natd. Both will fail in this case.
> >
> > You MIGHT be able to use ipfw divert/pipe rules to somehow shove the
> > packets into a program on their way out, and write a program that
> > would use raw sockets to hand-assemble the IP datagram on the way out;
> > I'm not sure if the kernel would try to outsmart you on that.
>
> Yeh, I thought of that. The problem is packets never leave
> anywhere since the route for the other NIC is not "OUT" any
> interface...it is the machine itself.
Then never go over a _physical_ inteface, but they _do_ cross an
interface, lo0, the internal loopback.
ipfw fwd <external gateway> ip from <ip_if0> to <ip_if1> in via lo0
--
Crist J. Clark | [EMAIL PROTECTED]
| [EMAIL PROTECTED]
http://people.freebsd.org/~cjc/ | [EMAIL PROTECTED]
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-net" in the body of the message
