Date: Sun, 20 May 2001 09:14:29 +0200 From: "Chojin" <chojin@nerim.net> To: <freebsd-net@FreeBSD.ORG> Subject: Re: Restricting traffic on one interface Message-ID: <000701c0e0fc$83a9d620$0245a8c0@chojin> References: <Pine.LNX.4.10.10105192301190.3361-100000@dopey.weyrich.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Use ipf (it's not ipfw) ----- Original Message ----- From: "Orville R. Weyrich.Jr" <orville@weyrich.com> Cc: "Freebsd Net (E-mail)" <freebsd-net@FreeBSD.ORG> Sent: Sunday, May 20, 2001 8:07 AM Subject: Restricting traffic on one interface > Hi -- > > I have a dual homed FreeBSD-4.3 machine and want to restrict traffic on > one interface but not the other (one interface is to a trusted network and > the other is not). > > What I want is the untrusted interface to only present SMTP and HTTP > ports, while the trusted interface presents telnet, ftp, NFS, SMB, etc. > > What is the best way to do this? The machine does NOT have IP forwarding > enabled. > > ------------------------------------------------------------------- > Orville R. Weyrich, Jr. Weyrich Computer Consulting > mailto:orville@weyrich.com KD7HJV http://www.weyrich.com > ------------------------------------------------------------------- > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000701c0e0fc$83a9d620$0245a8c0>