From owner-freebsd-questions  Sat Oct 18 17:41:59 1997
Return-Path: <owner-freebsd-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id RAA12213
          for questions-outgoing; Sat, 18 Oct 1997 17:41:59 -0700 (PDT)
          (envelope-from owner-freebsd-questions)
Received: from freebie.lemis.com (gregl1.lnk.telstra.net [139.130.136.133])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id RAA12208
          for <freebsd-questions@FreeBSD.ORG>; Sat, 18 Oct 1997 17:41:48 -0700 (PDT)
          (envelope-from grog@freebie.lemis.com)
Received: (from grog@localhost)
	by freebie.lemis.com (8.8.7/8.8.5) id KAA07316;
	Sun, 19 Oct 1997 10:11:25 +0930 (CST)
Message-ID: <19971019101124.61040@lemis.com>
Date: Sun, 19 Oct 1997 10:11:24 +0930
From: Greg Lehey <grog@lemis.com>
To: Chris Jungk <chris.jungk@nanosphere.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Need Proxy Server help
References: <3444FF7A.E4EDEB4C@nanosphere.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.84e
In-Reply-To: <3444FF7A.E4EDEB4C@nanosphere.com>; from Chris Jungk on Wed, Oct 15, 1997 at 10:38:02AM -0700
Organisation: LEMIS, PO Box 460, Echunga SA 5153, Australia
Phone: +61-8-8388-8250
Fax: +61-8-8388-8250
Mobile: +61-41-739-7062
WWW-Home-Page: http://www.lemis.com/~grog
Fight-Spam-Now: http://www.cauce.org
Sender: owner-freebsd-questions@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

On Wed, Oct 15, 1997 at 10:38:02AM -0700, Chris Jungk wrote:
> I am attempting to set up a FreeBSD Bastion host Server as a
> Proxy between my internal "secure" network and my external.
> both networks are WinNT 4.0
>
>  We are using "reserved addresses" in the 192.168.0.0 range
> for the internal net. and our own Class "C" 209.21.50.0 for
> the external.
>
> Our problem is we are unable to connect to the web, and send
> or receive mail from any of the internal machines.  Requests
> that are sent get resolved and the host is contacted but the
> information is not sent back.
>
> We are using Apache web server and Squid Proxy with IPFW set
> to "simple" however we have tried all setting and are at our
> wits end.
>
> And directions or references you could recommend will be
> greatly appreciated

You might like to pick up the following documents:

ftp://ftp.lemis.com/pub/cfbsd/ps/25-firewall.ps.gz  (Postscript)
ftp://ftp.lemis.com/pub/cfbsd/txt/25-firewall.txt.gz (ASCII)

They're the draft of a chapter about the subject in "The Complete
FreeBSD".  If you take these documents, I expect:

1.  You will not give them to anybody else
2.  You will return me comments about things you found incorrect,
    didn't understand, or didn't find.

Good luck!
Greg