diff options
author | brian <brian@FreeBSD.org> | 1998-04-18 10:27:19 +0000 |
---|---|---|
committer | brian <brian@FreeBSD.org> | 1998-04-18 10:27:19 +0000 |
commit | 116081d5f2f15798830c767e3781af1616223bfd (patch) | |
tree | 9c095639cbce82611f5e81abcc048add726ccb6a /etc/rc.firewall | |
parent | 4b10a4573603b76939c2ca43c0443bf63e8ba079 (diff) | |
download | FreeBSD-src-116081d5f2f15798830c767e3781af1616223bfd.zip FreeBSD-src-116081d5f2f15798830c767e3781af1616223bfd.tar.gz |
Add natd support.
PR: 6339
Submitted by: cdillon@wolves.k12.mo.us
Diffstat (limited to 'etc/rc.firewall')
-rw-r--r-- | etc/rc.firewall | 11 |
1 files changed, 10 insertions, 1 deletions
diff --git a/etc/rc.firewall b/etc/rc.firewall index 444572f..204f50c 100644 --- a/etc/rc.firewall +++ b/etc/rc.firewall @@ -1,6 +1,6 @@ ############ # Setup system for firewall service. -# $Id: rc.firewall,v 1.16 1998/02/10 01:45:47 adam Exp $ +# $Id: rc.firewall,v 1.17 1998/04/15 16:41:14 phk Exp $ if [ -f /etc/rc.conf ]; then . /etc/rc.conf @@ -58,6 +58,15 @@ fi $fwcmd -f flush ############ +# These rules are required for using natd. All packets are passed to +# natd before they encounter your remaining rules. The firewall rules +# will then be run again on each packet after translation by natd, +# minus any divert rules (see natd(8)). +if [ "X${natd_enable}" = X"YES" -a "X${natd_interface}" != X"" ]; then + $fwcmd add divert natd all from any to any via ${natd_interface} +fi + +############ # If you just configured ipfw in the kernel as a tool to solve network # problems or you just want to disallow some particular kinds of traffic # they you will want to change the default policy to open. You can also |