From owner-freebsd-questions Thu Apr 5 19: 9:31 2001 Delivered-To: freebsd-questions@freebsd.org Received: from pravda.tenzo.net (h24-69-46-74.gv.shawcable.net [24.69.46.74]) by hub.freebsd.org (Postfix) with ESMTP id 1F6A137B422 for ; Thu, 5 Apr 2001 19:09:29 -0700 (PDT) (envelope-from michael@tenzo.com) Received: from pravda.tenzo.net (localhost.localdomain [127.0.0.1]) by pravda.tenzo.net (Postfix) with SMTP id 469683F31 for ; Thu, 5 Apr 2001 19:09:31 -0700 (PDT) Content-Type: text/plain; charset="iso-8859-1" From: Michael O'Henly Reply-To: michael@tenzo.com Organization: TENZO Design To: freebsd-questions@FreeBSD.ORG Subject: Setting up a simple firewall and NAT... Date: Thu, 5 Apr 2001 19:09:30 -0700 X-Mailer: KMail [version 1.2] MIME-Version: 1.0 Message-Id: <01040519093000.02327@pravda.tenzo.net> Content-Transfer-Encoding: 8bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I'm looking for some general advice on how to set up a firewall and NAT for a home network. My requirements are pretty simple. I have a FreeBSD box with two NICs, one connected to the internet via cable modem and the other to an internal network on which there are two Macs. My external IP is assigned by DHCP. I'm not running any services that I want accessible to external users, or any from which I'd want to block internal users. To set this up under Linux, I use a script called pmfirewall which asks questions about the network, which services you want available to whom, etc., and then generates a set of IPCHAINS rules. 1. Is there something comparable for FreeBSD (i.e., a simple front-end for NATD and ipfw)? 2. Am I correct in thinking that I'll need to recompile the kernel to enable the IPFIREWALL and IPDIVERT options? 3. Do you know of any introductory tutorials for mere mortals who need a basic FreeBSD firewall? Thanks. M. -- Michael O'Henly TENZO Design To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message