sorry, neglected to include /etc/ipfw.rules
# egrep -v '^(#|$)' /etc/ipfw.rules
flush
add deny log all from any to any ipoptions ssrr,lsrr,rr
add pass tcp from me to 666.42.0.62 smtp
add deny log tcp from any to any smtp
add deny all from any to me auth
nat 42 config if vr0 log
add nat 42 ip4 from any to any via vr0
add 65530 pass all from any to any
> What do your net.link.bridge.pfil_{onlyip,member,bridge} sysctls wind up
> being, noting that your bridge iface is serving DHCP and:
same either way
# sysctl -w net.link.bridge.ipfw=0
net.link.bridge.ipfw: 1 -> 0
# sysctl -a | grep net.link.bridge.pfil
net.link.bridge.pfil_local_phys: 0
net.link.bridge.pfil_member: 0
net.link.bridge.pfil_bridge: 0
net.link.bridge.pfil_onlyip: 0
# sysctl -w net.link.bridge.ipfw=1
net.link.bridge.ipfw: 0 -> 1
# sysctl -a | grep net.link.bridge.pfil
net.link.bridge.pfil_local_phys: 0
net.link.bridge.pfil_member: 0
net.link.bridge.pfil_bridge: 0
net.link.bridge.pfil_onlyip: 0
randy
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
