fbsd_user wrote:
> Friends
> In both 4.9 and 5.2 I can not get an rules set to function that only
> uses keep-state' rules for outbound and inbound selection control
> and the divert rule.
>
> Does anybody have an rules set they can share with me as an sample
> for me to see.
>
> Thanks
>
The best sample is /etc/rc.firewall [and look in /usr/share/examples/ipfw
for a potentially useful script to use while testing]. I have moved over to
IPFILTER due to the fact that natd is userland based and is more problematic
[than ipnat] because of it.
Tom Veldhouse