From owner-FreeBSD-net-jp@jp.freebsd.org  Tue May 29 10:28:35 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id KAA33142;
	Tue, 29 May 2001 10:28:35 +0900 (JST)
	(envelope-from owner-FreeBSD-net-jp@jp.FreeBSD.org)
Received: from tac.tsukuba.ac.jp (bsd2.tac.tsukuba.ac.jp [130.158.192.79])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with SMTP id KAA33137
	for <FreeBSD-net-jp@jp.freebsd.org>; Tue, 29 May 2001 10:28:34 +0900 (JST)
	(envelope-from hiromi@tac.tsukuba.ac.jp)
Received: (qmail 56260 invoked from network); 29 May 2001 10:28:34 +0900
Received: from p166.tac.tsukuba.ac.jp (HELO localhost) (130.158.192.54)
  by bsd2.tac.tsukuba.ac.jp with SMTP; 29 May 2001 10:28:34 +0900
To: FreeBSD-net-jp@jp.freebsd.org
In-Reply-To: <20010528111728.8827.qmail@mbc.nifty.com>
References: <7mpucuif1p.wl@waterblue.imgsrc.co.jp>
	<20010528111728.8827.qmail@mbc.nifty.com>
X-Mailer: Mew version 1.94.2 on Emacs 19.34 / Mule 2.3 (SUETSUMUHANA)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Message-Id: <20010529102834J.hiromi@tac.tsukuba.ac.jp>
Date: Tue, 29 May 2001 10:28:34 +0900
From: Hiromi Kimura <hiromi@tac.tsukuba.ac.jp>
X-Dispatcher: imput version 20000228(IM140)
Lines: 24
Reply-To: FreeBSD-net-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+010328
X-Sequence: FreeBSD-net-jp 3125
Subject: [FreeBSD-net-jp 3125] Re: ipfw =?ISO-2022-JP?B?GyRCJEcbKEI=?=
 =?ISO-2022-JP?B?GyRCPVA4fSROGyhC?= I/F
 =?ISO-2022-JP?B?GyRCJHI7WERqJDckPyVrITwlaxsoQg==?= 
Errors-To: owner-FreeBSD-net-jp@jp.freebsd.org
Sender: owner-FreeBSD-net-jp@jp.freebsd.org
X-Originator: hiromi@tac.tsukuba.ac.jp

In <<20010528111728.8827.qmail@mbc.nifty.com>>
 <Matsuo Takaharu <tmts@mbc.nifty.com>> writes
> $B>>Hx$G$9!#(B
> $BA2$/$=$l$i$7$$>pJs$r8+$D$1$k$3$H$,$G$-$^$7$?!#(B
> 
> http://people.freebsd.org/~nsayer/bdg-ipfw.txt  $B$h$j(B
> > There are some complications in doing this because not all of the ipfirewall
> > functionality is available on bridged packets. 
> $B!J(B-$BN,(B-$B!K(B
> > Bridged packets are filtered while they are
> > being received, so rules that use 'out' or 'xmit' will never match.
> 
> $B$H$$$&$3$H$G$9$N$G!"%V%j%C%8$@$H=P8}$G$N%U%#%k%?%j%s%0$O$G$-$J$$$h$&$G(B
> $B$9$M!#(B

NIC 3$BKg$H$$$&$N$O;n$7$?;v$,$J$$$N$G$9$,!"(B
$BA4It$N(B NIC $B$r%V%j%C%8F0:n$K$7$J$1$l$P2DG=$+$b$7$l$^$;$s!#(B
$B$?$7$+!"(Bsysctl $B$N(B
	net.link.ether.bridge_cfg
$B$G(B NIC $B$r;XDj$G$-$?$O$:$G$9!#(B

-=-=-=-=-
$BLZB<GnH~(B  $BC^GHBg3X(B $B2CB.4o%;%s%?!<(B http://www.tac.tsukuba.ac.jp/~hiromi/
PGP Fingerprint16 = 2A 27 2E 46 9E 75 4E 3D  E3 FD 5A DC 2A AA 3A 2E
