Subject: Re: IPFilter'ing a PPPeE connection?
To: None <netbsd-users@netbsd.org>
From: Amitai Schlair <schmonz@schmonz.com>
List: netbsd-users
Date: 12/07/2001 00:21:10
on 12/7/01 12:03 AM, Johnny Lam at jlam@jgrind.org wrote:
> I have a newbie-ish question. I was wondering which interface I should be
> naming in my ipfilter rules if I wished to firewall a DSL connection that
> uses PPPoE. I'm using rp-pppoe with the DSL modem connected via an Ethernet
> cable to le0. When the DSL connection is established, ppp0 is configured.
> So the question is: should I be filtering on the ppp0 interface?
Yes. (I also use rp-pppoe in such a configuration, and I filter on ppp0, and
it works the way I expect.)
To see why this makes sense, look at the output of "ifconfig le0" and
"ifconfig ppp0". Only one of them will have an IP address. :-)
- Amitai