On Mon, Dec 15, 2003 at 07:25:21AM -0800, hugle wrote:
> now about this script.
Let's reduce this this to pseudo code to simplify the discussion:
map vlan0 from 192.168.0.0/16 ! to 192.168.0.0/16 (some ports) -> (gw2)
map fxp0 from 192.168.0.0/16 ! to 192.168.0.0/16 (other ports) -> (gw1)
map r
On Mon, Dec 15, 2003 at 08:15:33AM -0800, hugle wrote:
> btw, why should i use forward?
> cause system has ONE deufalt route, so if i nat via otehr interface,
> teh packets don't know to wwhch GW they have to go.
>
> So maybe i need to add default gateways to other interfaces ?
>
> so i have:
> d
On Sun, Dec 14, 2003 at 07:23:26PM -0500, fbsd_user wrote:
> What do you think IPF is? That's the utility name used to load
> filter rules into IPFILTER.
> So you are doing just what I said. The original poster said
> nothing about doing traffic shaping.
> IPNAT will not function with out IPFILTE
ne in his post.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Tillman
Hodgson
Sent: Sunday, December 14, 2003 6:38 PM
To: [EMAIL PROTECTED]
Subject: Re: ipnat+ipfw + 3 gateways
On Sun, Dec 14, 2003 at 06:01:08PM -0500, fbsd_user wrote:
> I think you are
On Sun, Dec 14, 2003 at 06:01:08PM -0500, fbsd_user wrote:
> I think you are confused. IPNAT is part of ipfilter firewall and
> IPFW is an different firewall who has his own NATD function. You can
> not use one part from one and the other part from the other one.
> They work as an set, IPNAT/IPFI
I think you are confused. IPNAT is part of ipfilter firewall and
IPFW is an different firewall who has his own NATD function. You can
not use one part from one and the other part from the other one.
They work as an set, IPNAT/IPFILTER or IPFW/NATD. Your best bet is
to use IPNAT and it's firewall
