I'm setting up a freebsd router and want certain IPs on my network to be forwarded to our local webserver if they make port 80 requests.
An example would be – banned user tries to surf the web, but all his requests are forwarded to the web page which notifies him that he is banned.
As I understand I can use IPFW for this and maybe NATD.
I would be grateful if someone could show me a good example on how to do it.
Best Answer
If you don't want to bother with natd you need kernel compiled with IPFIREWALL_FORWARD option. You can check your current kernel issuing 'sysctl kern.conftxt | grep IPFIREWALL_FORWARD'. If this option is absent you need to rebuild your kernel (or stick to pf).
If you have such kernel you just need to add this rules: