Site Navigation

Date:      Sat, 03 Oct 2015 21:26:32 +0900
From:      KIRIYAMA Kazuhiko <kiri@kx.openedu.org>
To:        centrum@snow.plala.or.jp
Cc:        freebsd-users-jp@freebsd.org
Subject:   [FreeBSD-users-jp 95612] Re: =?iso-2022-jp?b?SVBGK0lQTkFUK01QRDUbJEIkTkBfRGokR0RMPy4bKEI=?= =?iso-2022-jp?b?GyRCJCxFU0BaJGwkaxsoQg==?=
Message-ID:  <201510031226.t93CQWq8077407@kx.openedu.org>
In-Reply-To: <JxQb710MGWykR5CQZCffGVHw7@snow.plala.or.jp>
References:  <JxQb710MGWykR5CQZCffGVHw7@snow.plala.or.jp>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

At Sat, 03 Oct 2015 17:26:07 +0900,
centrum@snow.plala.or.jp wrote:
> 
> $B0@HS86$H?=$7$^$9!#(B
> $B$3$3$K<ALd$rEj$2$k$N$O5W$7?6$j$J$N$G6[D%$7$F$^$9(B
> 
> $B:rF|$+$i(BFreebsd10.2-REALEASE-p4$B$r(B
> $B%$%s%9%H!<%k$7$?%^%7%s$G(B
> IPF+IPNAT+mpd5$B$rAH$_9g$o$;$F(B
> $B%k!<%?!<5!$r%;%C%F%#%s%0$7$F$$$^$9!#(B
> 
> $B%$%a!<%8$H$7$F$O$3$N%k!<%?!<5!$,(B
> $B%2!<%H%&%'%$$K$J$C$F$*$j!"(B
> $B2<0L$K(BWeb$B%5!<%P$,#1$D$@$1(B
> $B$V$i2<$,$C$F$$$k9=@.$G$9!#(B
> $B"(%$!<%5%M%C%H%O%V$,4V$KF~$C$F$F!"$=$l$,860x$+$H;W$$(B
> $B<h$j30$7$FD>@\%^%7%sF1;N7R$$$G$$$^$9$,(B
> $BJQ2=$,8+$i$l$^$;$s$G$7$?!#(B
> 
> 
> NIC$B$O(BIntelR PRO/1000 PT DualPort$B$r(B
> $B;HMQ$7$F(Bem0$B$r(BLAN$BB&$K!"(Bem1$B$r(Bmpd5$B$r(B
> $B;HMQ$7$F(Bpppoe$B$rC}$i$;$F!"(Bng0$B$H$7$F(B
> $B5!G=$5$;$F$$$^$9!#(B
> 
> $B%k!<%F%#%s%0$b(BIPFilter$B$N@_Dj$b(B
> $B2?EY$b8+D>$7$?$N$G$9$,!"$H$&$H$&<+J,$G(B
> $B2r7h=PMh$J$$J70O5$$,=P$F$-$?$N$G(B
> $B=t@hGZJ}$K2r7h$N%R%s%H$G$bD:$1$l$P$H;W$$(B
> $B%a!<%k$r=P$5$;$FD:$-$^$7$?!#(B
> 
> 
> $B>I>u$H$7$F$O!"8=>u$G$O(BWeb$B$N1\Mw$b(B
> $B%a!<%k$NAw<u?.$bLdBj$"$j$^$;$s$N$G(B
> $B%k!<%F%#%s%0$b%9%`!<%:$K9T$o$l$F$$$k$H(B
> $BG'<1$7$F$$$?$N$G$9$,!"$U$H$7$?Go;R$K(B
> $B%a!<%kAw?.;~$K%?%$%`%"%&%H$,IQHK$KH/@8$7$?$j!"(B
> web$B$,I=<($5$l$J$/$J$C$?$j$7$F$$$^$9!#(B
> 
> web$B$K4X$7$F$O%j%m!<%I$r7+$jJV$9$H(B
> $B@5>o$KI=<($5$l$k$h$&$K$J$j!"(B
> $B%a!<%k$K$D$$$F$O$7$V$H$/CfCG$H<u?.$r(B
> $B7+$jJV$9$H<u?.=PMh$?$j$7$^$9!#(B
> 
> $BFC$K(B5$B%"%+%&%s%H$[$I$N%a!<%k$r0l5$$K<u?.$9$k(B
> $B$H$[$\(B3$B8DL\$N%"%+%&%s%H$0$i$$$G%?%$%`%"%&%H$7!"(B
> $BDd;_$7$?%"%+%&%s%H$KLdBj$,$"$k$N$+$H;W$$(B
> $BC1FH$GAw<u?.$5$;$k$H!"%"%C%5%j<u?.=PMh$?$j!#(B
> 
> $B$J$K$,2?$d$iF,$,:.Mp$7$F$-$^$9#w(B
> 
> 
> $B%3%s%=!<%k$G(Bipmon -a $B$H$7$F%j%@%$%l%/%HEy$N(B
> NAT$B=hM}$KLdBj$G$b$"$k$N$+$HD/$a$F$$$^$7$?$,(B
> $BLdBj$H$J$k$h$&$J;v$bH/8+=PMh$:$G$9!#(B
> 
> 
> $B$3$N%k!<%?!<5!$O8E$$%k!<%?!<5!$N(B
> $BBeBX5!$H$7$F=`Hw$7$?J*$G!"@_Dj$J$I$O(B
> $B$[$\5l5!$N@_Dj$r4]%3%T!<$7$F$"$j$^$9!#(B
> 
> 
> $B%Q%1%C%H$,ESCf$GGK4~$5$l$F$$$kMM$J(B
> $B$=$s$J46$8$+$J$H<+J,$G$O;W$C$F$$$k$N$G$9$,!#!#!#(B
> 
> 
> 
> $B0J2<(Brc.conf$B$NFbMF$G$9!#(B
> 
> ////////////////////////////////
> 
> hostname="+++++.-----.jp"
> keymap="jp.106.kbd"
> ifconfig_em1="UP"
> gateway_enable="YES"
> 
> ifconfig_em1="mtu 1492"
> ifconfig_em0="inet 192.168.1.5 netmask 255.255.255.0 mtu 1492"
> 
> natd_enable="NO"
> 
> ntpd_enable="YES"
> ntpd_config="/etc/ntp/ntp.conf"
> dumpdev="AUTO"
> 
> ipnat_enable="YES"
> ipnat_rules="/etc/ipnat.rules"
> firewall_enable="YES"
> firewall_type="OPEN"
> ipfilter_enable="YES"
> ipfilter_rules="/etc/ipf.rules"
> ipfilter_flags=""
> 
> mpd_enable="YES"
> 
> ipmon_enable="YES"
> ipmon_flags="-D /var/log/ipf.log"
> portmap_enable="no"
> 
> sendmail_enable="NONE"
> sendmail_submit_enable="NO"
> sendmail_outbound_enable="NO"
> sendmail_msp_queue_enable="NO"
> 
> webmin_enable="YES"
> inetd_enable="YES"
> 
> //////////////////////////////////
> 
> $B0J2<(Bipnat.rules$B$NFbMF$G$9(B
> 
> map ng0 192.168.1.0/24 -> 0/32 proxy port ftp ftp/tcp mssclamp 1414
> map ng0 192.168.1.0/24 -> 0/32 portmap tcp/udp auto mssclamp 1414
> map ng0 192.168.1.0/24 -> 0/32 mssclamp 1414
> 
> rdr ng0 0.0.0.0/0 port 80 -> 192.168.1.3 port 80 tcp
> rdr ng0 0.0.0.0/0 port 110 -> 192.168.1.3 port 110 tcp
> rdr ng0 0.0.0.0/0 port 587 -> 192.168.1.3 port 25 tcp
> rdr ng0 0.0.0.0/0 port 21 -> 192.168.1.3 port 21 tcp
> rdr ng0 0.0.0.0/0 port 50022 -> 192.168.1.3 port 50022 tcp
> rdr ng0 0.0.0.0/0 port 10000 -> 192.168.1.3 port 10000 tcp
> rdr ng0 0.0.0.0/0 port 143 -> 192.168.1.3 port 143 tcp
> 
> //////////////////////////////////
> 
> 
> $B0x$_$K!"(BIPFilter$B$NFbMF$b(BIn/Out$BA4$F(B
> pass$B$9$k@_Dj$K$7$F$bJQ2=$,$"$j$^$;$s!#(B
> 
> $BESCf$GDL?.$,ES@Z$l$k$h$&$J46$8$G$9!#(B
> 
> 
> $B59$7$/$*4j$$$7$^$9!#(B
> 
> 
> $B0@HS86(B
> _______________________________________________
> freebsd-users-jp@freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-users-jp
> To unsubscribe, send any mail to "freebsd-users-jp-unsubscribe@freebsd.org"
> 

$B@N!$(Bmpd5 $B$r;H$C$F$?$H$-!$(B{ipfw_nat,pf}$B!\(Bmpd $B$G$&$^$/$$$+$J$+$C(B
$B$?$N$G(B mpd $B$N(B nat $B$K@Z$jBX$($?$3$H$,$"$j$^$7$?!%?oJ,A0(B(9.1-*)
$B$J$N$G%"%l$G$9$,!$(B/usr/local/etc/mpd5/mpd.conf $B$G(B

startup:
	set user admin * *
	set console self 127.0.0.1 5005
	set console open
	set web self 0.0.0.0 5006
	set web open

default:
	load pppoe

pppoe:
	create bundle static B1
	set iface route default
	set ipcp ranges 0.0.0.0/0 0.0.0.0/0
	set iface mtu 1454
	set iface enable tcpmssfix
	set iface enable nat
	set nat enable log
	set nat disable incoming
	set nat enable unreg-only
	set nat red-port tcp	*.*.*.* 25		192.168.1.3  25 
	set nat red-port tcp	*.*.*.* 80		192.168.1.4  80
	set nat red-port tcp	*.*.*.* 21		192.168.1.5  21
	set nat red-port tcp	*.*.*.* *	192.168.1.254 *
	set nat red-port tcp	*.*.*.* *	192.168.1.1   22
	set nat red-port tcp	*.*.*.* *	192.168.1.2   22
	set nat red-port tcp	*.*.*.* *	192.168.1.3   22
	set nat red-port tcp	*.*.*.* *	192.168.1.4   22
	set nat red-port tcp	*.*.*.* *	192.168.1.5   22
	set nat red-port tcp	*.*.*.* *	192.168.1.7   *
	create link static L1 pppoe
	set link action bundle B1
	set auth authname "*@*.*.*.*"
	set link max-redial 0
	set link mtu 1454
	set link mru 1454
	set link keep-alive 10 60
	set link no acfcomp protocomp
	set link accept chap
	set pppoe iface em0
	set link enable incoming
	set pppoe service ""
	log
	open

$B$H$+$9$l$P$H$j$"$($:(B nat $B$G$-$k$H;W$$$^$9(B(`*' $B$O%5%$%H8GM-$N(B
$B>pJs$G$9(B)$B!%$?$@!$(Bng_* $B$rDI2C%m!<%I$7$J$$$H$$$1$^$;$s$,!$;d$O(B
$BLLE]$J$N$G(B

--- /usr/local/etc/rc.d/mpd5.org	2014-03-18 22:15:39.000000000 +0900
+++ /usr/local/etc/rc.d/mpd5	2014-10-05 22:31:04.000000000 +0900
@@ -28,6 +28,7 @@
 pidfile="/var/run/${name}.pid"
 command="/usr/local/sbin/${name}"
 required_files="/usr/local/etc/${name}/mpd.conf"
+required_modules="netgraph ng_socket ng_iface ng_ppp ng_bpf ng_vjc ng_pppoe ng_ether ng_nat"
 
 case "${mpd_flags}" in
 *-p\ *)

$B$7$F$^$7$?!%(B

---
KIRIYAMA Kazuhiko

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201510031226.t93CQWq8077407>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact