Re: packet order, ipf or ipfw

From: Andrew Riabtsev (resident_at_b-o.ru)
Date: 07/29/04

  • Next message: Andrew Riabtsev: "Re[2]: packet order, ipf or ipfw (offtopic)" 
    Date: Thu, 29 Jul 2004 11:09:43 +0400
To: Charlie Schluting <charlie@schluting.com>

    Hello Charlie,

    Thursday, July 29, 2004, 1:23:33 AM, you wrote:

    CS> So, what is the order, if I'm running ipf AND ipfw at the same time?
    CS> Will it work at all in this manner?
    Load both firewalls as modules, then you can be sure packets goes
    first through firewall you load first. And yes, this should works ok
    (ipf AND ipfw). 

    -- 
 Andrew                            mailto:resident@b-o.ru
proud lvl 9 ubah haxor (http://www.try2hack.nl/levels/)
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
  • Next message: Andrew Riabtsev: "Re[2]: packet order, ipf or ipfw (offtopic)"

    Relevant Pages

    • Re: [PATCH] ng_tag - new netgraph node, please test (L7 filtering possibility)
      ... > I can't load the kld on my Sun Sparc, I think I messed up ld yesterday ... so exact tags representation can change each time ... (for this reason ipfw tags were made incompatible with pf), ... > I'm particularly interested in this for doing packed shaping, ...
      (freebsd-current)
    • Re: make buildkernel failed related to ip_divert module
      ... Then you can load everything as module. ... unless you want to use 'ipfw fwd'. ... interface and 192.168.10.1/24 on the other interface with a default ... That is the reason for the check. ...
      (freebsd-current)
    • Sunfire X2200 ipfw and bge issues
      ... We have a new Sunfire X2200 and when I load 6.2 stable on it ipfw will not load on boot. ... After the system boots I can do a kldload ipfw and get it working. ... This system is also rebooting every time I plug the ethernet cable into the bge0 port on the system. ...
      (freebsd-stable)
    • Re: how many IPFW rules?
      ... I have a smtp server under attack by what seems like a large botnet. ... inetd is choking under the load and not allowing real mail through. ... successfully used tshark to find the offenders and put them into ipfw ... If you've created 55K separate rules and you're not seeing any ...
      (freebsd-questions)
    • RELENG_5 ipfw problem
      ... ipfw is running and loads it's rules just fine: ... But the packets don't get forwarded. ... The setup is a local load balancing, so there are connects coming from ...
      (freebsd-current)