[afnog] IPfw + natd
Phil Regnauld
regnauld at x0.dk
Fri Dec 2 19:56:17 EAT 2005
On Fri, Dec 02, 2005 at 03:52:57PM +0000, Brian Candler wrote:
>
> I found interactions between ipfw and natd to be really hard to handle apart
> from the simplest cases. I have had to have one rule to handle outbound
> traffic at one point in the ruleset, and another rule to handle inbound
> traffic at a different point in the ruleset; it was a nightmare.
If one understands that packets go 4 times through the firewall
with natd, in what directions, it suddenly makes more sense.
More information about the afnog
mailing list