> > > There's more to it than that, you likely need the pfil ordering patch > as well, and a number of those are all interrelated to some extent so > they may not apply independently. Short of just using our kernel, or > groking kernel development enough to figure out which pieces you need > and pulling them out, it's not an easy task.
Base on what you just said, it's really not an easy job, But according to the FreeBSD man page, 1, If the ipaddr is a local address, then the port will work 2,fwd rule will not match layer-2 packets, I don't want to install all the patches just like a pfsense,(I meant by right, I should not install them, and according to the ipfw man page, seems I dont need to install more things to make the fwd work.) And I have turn on all the options to activate the IPFW Forwarding, NAT, and PF. Now the fwd is working . but a little bit different compare to my understanding. the first rule is fwd 127.0.0.1,8000 tcp from any to any in, this rule did redirect the traffic to 127.0.0.1, but the port is stil the same. that means I cannot open http://1.1.1.1:123, so maybe the traffic has been redirected to 127.0.0.1:123 or maybe the fwd is not working , it is try to find the 1.1.1.1:123, but when I want to open http://1.1.1.1:8000 , it will open 127.0.0.1:8000, so I think the port is not working properly on my machine currently,
_______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
