Great Circle Associates Firewalls
(June 1997) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Plug-gw- One to many relationship
From: "Marcus J. Ranum" <mjr @ nfr . net>
Organization: Network Flight Recorder, Inc.
Date: Tue, 3 Jun 1997 09:47:53 +0000
To: Firewalls @ GreatCircle . COM
Comments: Authenticated sender is <mjr @ mail . clark . net . >
In-reply-to: <199706030631 . XAA11683 @ honor . greatcircle . com>
Reply-to: mjr @ clark . net 
>         Has anyone gotten a one to many relationship to work
> with FWTK 2.0?

The one to many support requires kernel modifications
in order to work. Basically, you need code that absorbs
all packets going through the firewall, and the pulls the
"real" destination out of the routing layer and connects
to it. So, unless you want to spend a month or so on
writing some pretty subtle kernel hacks, you can't do it
with just FWTK.

mjr. 
-----
Marcus J. Ranum, CEO, Network Flight Recorder, Inc.
<A HREF=http://www.clark.net/pub/mjr>Personal</A>
<A HREF=http://www.nfr.net>Work</A>
<A HREF=http://www.clark.net/pub/mjr/websec>New Book!!</A>
Follow-Ups:
Indexed By Date Previous: Re: Difference between NAT and IP Masquerading
From: "Willibald Kraml" <wkraml @ fiss . kpmg . co . at>
Next: Re: ipfwadm question
From: "Ge' Weijers" <ge @ calamari . Progressive-Systems . Com>
Indexed By Thread Previous: Re: Plug-gw- One to many relationship
From: "David Lang" <dlang @ diginsite . com>
Next: Re: Plug-gw- One to many relationship
From: "Mark Horn [ Net Ops ]" <mhorn @ funb . com>
Google
 
Search Internet Search www.greatcircle.com