abcnns.ru

• Next message: Andrey V. Sokolov: "Re: Forward to next hop in ipf"
• Previous message: Fernando Schapachnik: "Re: Forward to next hop in ipf"
• In reply to: Fernando Schapachnik: "Re: Forward to next hop in ipf"
• Next in thread: Andrey V. Sokolov: "Re: Forward to next hop in ipf"
• Reply: Andrey V. Sokolov: "Re: Forward to next hop in ipf"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 4 Jul 2000, Fernando Schapachnik wrote:

> > I have tested "to" option
> > default gateway is 192.168.0.1
> > The config string is:
> > pass out log quick on ed0 to 192.168.0.2 from 192.168.0.2/32 to any
> > where 192.168.0.2 is my new gateway, but it didn't works!
Excuse me! I make a mistake in the previous letter! ;-)
The config string is:
pass out log quick on ed0 to 192.168.0.2 from 192.168.0.3/32 to any
where 192.168.0.2 is my new gateway and 192.168.0.3/32 is ip-address of
the my host!
>
> >From the ipf how-to: you would be better off with something like:
>
> block out log quick on ed0 to <iface> from <ip>/32 to any
>
> You will be blocking the normal packet and deviating the original one
> to <iface>. Besides, I can't see the point of "to 192.168.0.2 from
> 192.168.0.2".
>
> Good luck!
>
>
> Fernando P. Schapachnik
> Administración de la red
> VIA NET.WORKS ARGENTINA S.A.
> fernandovia-net-works.net.ar
> (54-11) 4323-3333
>

To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• Next message: Andrey V. Sokolov: "Re: Forward to next hop in ipf"
• Previous message: Fernando Schapachnik: "Re: Forward to next hop in ipf"
• In reply to: Fernando Schapachnik: "Re: Forward to next hop in ipf"
• Next in thread: Andrey V. Sokolov: "Re: Forward to next hop in ipf"
• Reply: Andrey V. Sokolov: "Re: Forward to next hop in ipf"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]