From owner-freebsd-questions@FreeBSD.ORG Fri May 6 01:37:05 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 69166106566B for ; Fri, 6 May 2011 01:37:05 +0000 (UTC) (envelope-from martinrame@yahoo.com) Received: from nm19.bullet.mail.sp2.yahoo.com (nm19.bullet.mail.sp2.yahoo.com [98.139.91.89]) by mx1.freebsd.org (Postfix) with SMTP id 435A58FC1F for ; Fri, 6 May 2011 01:37:05 +0000 (UTC) Received: from [98.139.91.70] by nm19.bullet.mail.sp2.yahoo.com with NNFMP; 06 May 2011 01:23:37 -0000 Received: from [98.139.91.49] by tm10.bullet.mail.sp2.yahoo.com with NNFMP; 06 May 2011 01:23:37 -0000 Received: from [127.0.0.1] by omp1049.mail.sp2.yahoo.com with NNFMP; 06 May 2011 01:23:37 -0000 X-Yahoo-Newman-Property: ymail-3 X-Yahoo-Newman-Id: 225662.65952.bm@omp1049.mail.sp2.yahoo.com Received: (qmail 33092 invoked by uid 60001); 6 May 2011 01:23:36 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1304645016; bh=LY8rL91aW1KAtZdM45OUOZI3O17cD9Iv1RKXjWeF/mg=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=iRvOvy4Ar4XSRJnJh+SMPk3dzGgOIWoIJcj0iGi8pXR81I3MY/Ua+t9rOYtHJutd1DikZG3Eq6R0dyHCOzDdsH6z5S+62ME8LB+eTveupUsVVjQXBSuahXOxbwnxc07tX6vm0SSno4f3+Dy5UDnba+GdFrHek9uDdmX8KRgNu/4= DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=VYtVcnUWmbipVpypO84/iqOHhNUFAhiEH/vymUQYAj2nfMDnrnouHZhH+HrUQOVAsPtzen2vIRO2laOt6qfRoq8r4hkUSNCTfzWWAY0d0bdAnKxGwfr8EVEkzZ6bUVozfey8yMOqWYSgV4oECKGftej6ZR2r41hsoX53WJqysvo=; Message-ID: <815771.25520.qm@web113506.mail.gq1.yahoo.com> X-YMail-OSG: M_7gI2wVM1lIhwAlgsqtm_E_bYF0vO7oz4UKDuWCcm4CaqB .e08DwdZnylTXz9HTGjh1X.P4YL5cEm6K4jqhzcGNDPqk6eB7B5JPHOnmyWE ptpUxVrzbapCw3As_fZ0RxFuPf5b3XPN66IgUScHEjAn6Zwqp6yKtZHMxWvZ _Tk6FN5uQWh0P4zqZGELkGDrVqODmhpNXhzgB_gs_MQsM4GFgtZz.6iqUUnH Y_SzYu1utP1Ozgv4W7jieJlA9qSNbGYeKbnr2N1kHRyac6cC9ylXjj7e5Pr2 LgO1fEVVM15P_IJ1Icpcsbv0iGOTmeYY7C83z5QxiLnZd9HlN6BrtJLgztb1 3FhHm_IYupw62oViKUcoqIFTmdwzdW.OY1SOOkhjoUdFmjZlQ4YnCNVbLXt_ ldAzaRpLwyfv3RebQMl9xqaeAoEUqORIZxVn9QnufiL_25KWDwUMvHP6s2P2 B7lJxLC6EAhjKljGd8Y3qJWpBW4LyN0uMznGPK3JyHfYK Received: from [190.17.13.199] by web113506.mail.gq1.yahoo.com via HTTP; Thu, 05 May 2011 18:23:36 PDT X-Mailer: YahooMailClassic/12.0.2 YahooMailWebService/0.8.110.299900 Date: Thu, 5 May 2011 18:23:36 -0700 (PDT) From: =?iso-8859-1?Q?Leonardo_M=2E_Ram=E9?= To: freebsd-questions@freebsd.org In-Reply-To: <4DC345D2.4050806@radel.com> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Subject: Re: Home firewall with DLink router and FreeBSD X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 May 2011 01:37:05 -0000 --- On Thu, 5/5/11, Jon Radel wrote:=0A=0A> From: Jon Radel= =0A> Subject: Re: Home firewall with DLink router and FreeB= SD=0A> To: freebsd-questions@freebsd.org=0A> Date: Thursday, May 5, 2011, 9= :50 PM=0A> =0A> On 5/5/11 8:37 PM, Leonardo M. Ram=E9 wrote:=0A> > =0A> > H= i, at home I have a DLink Dir 300 router to provide=0A> internet access for= my home network. The network is composed=0A> by two Windows PCs, one Linux= laptop and one FreeBSD server=0A> we use mainly for storage and as web/dat= abase server.=0A> > =0A> > I must add, the server only have one network car= d.=0A> =0A> It becomes difficult to use a server as a firewall unless=0A> y= ou have an "inside" and an "outside" network.=A0 Easiest=0A> is to simply a= dd another network card, should that be=0A> possible on your server.=A0 Ano= ther possibility is to use=0A> VLAN taggging and connect the server to a sw= itch that=0A> understands VLANs.=0A> =0A> > =0A> > I would like to know if = its possible to use the=0A> FreeBSD server as a Firewall for the whole netw= ork, securing=0A> LAN and WiFi connections. If this can be done, then how?= =0A> could you point me to some howto?.=0A> > =0A> =0A> Yes.=A0 I'd start o= n the FreeBSD website and start=0A> reading things that look useful.=A0 If = you're thinking=0A> about using pf as your firewall, which I'd personally= =0A> recommend though other options are perfectly workable also,=0A> there'= s a nice document on the OpenBSD web site, IIRC.=0A> =0A=0AThanks, I think = I better add a 2nd network card, as Daniel suggested. Then I'll try this ag= ain.=0A=0ALeonardo M. Ram=E9=0Ahttp://leonardorame.blogspot.com