Thank you.
I want to use vnet jail for a specific subnet that I need to seperate from
the system.
so basicly i create a vlan + a bridged interface to the public.
these two (vlan+bridged interface- epair0a) will in in the vnet jail, so I
can do NAT only for that vlan going out.
This is the idea, as there are more interfaces in the system and there is
only one interface out...
so basicly it should be a firewall Nat only between the specific lan and
the outside world.
Can this be accomplished otherway?
Sami
On Wed, Jun 20, 2012 at 5:43 PM, Alexander V. Chernikov
melif...@freebsd.org wrote:
On 19.06.2012 12:56, Sami Halabi wrote:
Hi,
I want to ask aout VNET jails, i read somehwre that I'm able to run IPFW,
but not PF firewall in a cnet jail.
is that correct?
i want a vnet jail basicly for nat, so natd with ipfw + ipdivert is my
1) You can do nat without vnet.
2) ipfw nat is currently the easiest way to do nat.
choice? or i can use pf somehow, I never used pf before,
so i would like some advise here...
Thanks in advance,
--
WBR, Alexander
--
Sami Halabi
Information Systems Engineer
NMS Projects Expert
FreeBSD SysAdmin Expert
___
freebsd-ipfw@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw
To unsubscribe, send any mail to freebsd-ipfw-unsubscr...@freebsd.org
