diff options
author | brian <brian@FreeBSD.org> | 2001-08-02 10:16:32 +0000 |
---|---|---|
committer | brian <brian@FreeBSD.org> | 2001-08-02 10:16:32 +0000 |
commit | c98910abd5b0b1b0f9f60a1a03c87108d570ecfb (patch) | |
tree | d571c8a1dbc9c5738e406b39c8766741a43175e6 /usr.sbin/ppp/ppp.8.m4 | |
parent | 55328fd4bf7096c3e003d6473be7fe5f910e1ae2 (diff) | |
download | FreeBSD-src-c98910abd5b0b1b0f9f60a1a03c87108d570ecfb.zip FreeBSD-src-c98910abd5b0b1b0f9f60a1a03c87108d570ecfb.tar.gz |
Add a ``nat punch_fw'' command for punching FTP and IRC DCC holes through
the firewall.
Diffstat (limited to 'usr.sbin/ppp/ppp.8.m4')
-rw-r--r-- | usr.sbin/ppp/ppp.8.m4 | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/usr.sbin/ppp/ppp.8.m4 b/usr.sbin/ppp/ppp.8.m4 index 2dbc12e..f6d168e 100644 --- a/usr.sbin/ppp/ppp.8.m4 +++ b/usr.sbin/ppp/ppp.8.m4 @@ -3399,6 +3399,25 @@ Refer to the description of in .Xr libalias 3 for details of the available commands. +.It nat punch_fw Op Ar base count +This command tells +.Nm +to punch holes in the firewall for FTP or IRC DCC connections. +This is done dynamically by installing termporary firewall rules which +allow a particular connection (and only that connection) to go through +the firewall. +The rules are removed once the corresponding connection terminates. +.Pp +A maximum of +.Ar count +rules starting from rule number +.Ar base +will be used for punching firewall holes. +The range will be cleared when the +.Dq nat punch_fw +command is run. +.Pp +If no arguments are given, firewall punching is disabled. .It nat same_ports yes|no When enabled, this command will tell the network address translation engine to attempt to avoid changing the port number on outgoing packets. |