Page MenuHomeFreeBSD

fahri_hasan_hotmail.com (Fahri Hasan)
User

Projects

User Details

User Since
May 22 2017, 8:55 PM (121 w, 1 d)

Recent Activity

Dec 3 2017

fahri_hasan_hotmail.com added a comment to D13215: arp_accept.

Can anyone test this little patch?

Dec 3 2017, 2:40 PM

Nov 23 2017

fahri_hasan_hotmail.com added a comment to D13215: arp_accept.

I know the right place for arp_accept is in "_net_link_ether_inet", but I do not know how to achieve it.

Nov 23 2017, 10:19 PM
fahri_hasan_hotmail.com created D13215: arp_accept.
Nov 23 2017, 10:05 PM

Jul 23 2017

fahri_hasan_hotmail.com added a comment to D11155: ipfw_nat: allow redirect_port if missing config ip or if.

After small changes to the config file, everything works great.

Jul 23 2017, 7:23 PM

Jul 22 2017

fahri_hasan_hotmail.com added a comment to D11155: ipfw_nat: allow redirect_port if missing config ip or if.

http://85.187.224.234:3000 <--- Expected content. (Black page for the outside world)
http://85.187.224.234:80 <--- ipfw fwd returns this content (TEST OK)

Jul 22 2017, 10:39 PM
fahri_hasan_hotmail.com added a comment to D11155: ipfw_nat: allow redirect_port if missing config ip or if.

Apache 2.4.25 listens on ports 80,443,3000.
I try to access a random web site from a PC in LAN and the reply comes from Apache port 80, not from port 3000.

Jul 22 2017, 4:55 PM
fahri_hasan_hotmail.com added a comment to D11155: ipfw_nat: allow redirect_port if missing config ip or if.

Before I used ipfw nat I did a lot of tests with ipfw fwd.
I upgrade kernel to 11-RC3 and made a new test with ipfw fwd.

Jul 22 2017, 1:26 PM

Jul 21 2017

fahri_hasan_hotmail.com added a comment to D11155: ipfw_nat: allow redirect_port if missing config ip or if.

I have never tested ipfw fwd on a external interface, because:

  1. I redirect only traffic for expired users, destination port 80 to ISP warning page. After first check (internal interface) this traffic dropped and never have going to second ipfw check on external interface.
  2. I allow traffic on a external interface with first rule. I try to make minimal ipfw rules for high performance router.
Jul 21 2017, 8:28 PM
fahri_hasan_hotmail.com added a comment to D11155: ipfw_nat: allow redirect_port if missing config ip or if.

I want to redirect all outgoing traffic from LAN to destination IP:any port 80 ---> localhost:3000
It seems simple. Example rule:
ipfw nat 3000 config redirect_port tcp localhost:3000 80

Jul 21 2017, 3:58 PM

Jul 20 2017

fahri_hasan_hotmail.com added a comment to D11155: ipfw_nat: allow redirect_port if missing config ip or if.

Can anyone check this functionality and add it to the kernel?

Jul 20 2017, 8:51 PM

Jun 12 2017

fahri_hasan_hotmail.com created D11155: ipfw_nat: allow redirect_port if missing config ip or if.
Jun 12 2017, 10:29 AM

May 24 2017

fahri_hasan_hotmail.com removed a watcher for network: fahri_hasan_hotmail.com.
May 24 2017, 8:28 AM

May 22 2017

fahri_hasan_hotmail.com added a member for network: fahri_hasan_hotmail.com.
May 22 2017, 9:09 PM
fahri_hasan_hotmail.com added a watcher for network: fahri_hasan_hotmail.com.
May 22 2017, 9:08 PM