Date: Sat, 29 Apr 2006 22:36:47 +0300 From: Odhiambo Washington <wash@wananchi.com> To: steve lasiter <slas7713@yahoo.com> Cc: freebsd-pf@freebsd.org Subject: Re: first question Message-ID: <20060429193647.GC91947@ns2.wananchi.com> In-Reply-To: <20060429145835.72906.qmail@web38910.mail.mud.yahoo.com> References: <20060429145835.72906.qmail@web38910.mail.mud.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
* On 29/04/06 07:58 -0700, steve lasiter wrote: | I've used ipfilter and now have just loaded FreeBSD | 6.1 with PF to configure for a gateway/firewall/router | w/3 NICS for a new network the office. My topologoy: | =20 | INTERNET | | | | | --------|---------=20 | 66.190.186.13 | (EXT_NIC) | =20 | GATEWAY/FIREWALL | =20 | 10.0.0.0/24 ---switch----DMZ webserver | (DMZ_NIC) | =20 | 192.168.0.0/24 | (INT_NIC) | --------|---------- | | | | | SBS 2003 box w/ISA | | | switch | | | LAN |=20 | Questions: | 1)I need to allow access on ports 25, 80 and 443 to | the Small Business Server 2003 box for remote access | but I want all non-office related traffic on ports 80 | and 443 to go to the dmz webserver. Can you give some | insight on how I might route this using PF? |=20 | 2)Can someone provide a good base set of rules that | they have established for a similar topology? |=20 | This should get me started. Thanks for all the input. Please get started using the FAQ at the following link: http://www.openbsd.org/faq/pf At the end of the reading, you will see this example: http://www.openbsd.org/faq/pf/example1.html =46rom there, after thorough reading, you will be able to craft rules that= =20 will handle connections to your DMZ.... Sorry, if I did not turn out to be as helpful as you might have=20 expected. -Wash http://www.netmeister.org/news/learn2quote.html DISCLAIMER: See http://www.wananchi.com/bms/terms.php -- +=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D+ |\ _,,,---,,_ | Odhiambo Washington <wash@wananchi.com> Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 +=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D+ =46rom a Tru64 patch description: Fixes a bug that causes a panic due to software error
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060429193647.GC91947>