From owner-freebsd-isp Thu Aug 29 10:10:52 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7FF4A37B401 for ; Thu, 29 Aug 2002 10:10:45 -0700 (PDT) Received: from mail.yazzy.org (mail.wrs.no [80.232.16.66]) by mx1.FreeBSD.org (Postfix) with ESMTP id D716543E4A for ; Thu, 29 Aug 2002 10:10:44 -0700 (PDT) (envelope-from yazzy@yazzy.org) Received: from yazzy.org (saruman.wrs [192.168.64.6]) by mail.yazzy.org (Postfix) with SMTP id BBB4762F7489 for ; Thu, 29 Aug 2002 15:37:17 +0200 (CEST) Received: from mail.wrs.no ([80.232.16.66]) (SquirrelMail authenticated user yazzy.yazzy.org) by www.yazzy.org with HTTP; Thu, 29 Aug 2002 15:39:43 +0200 (CEST) Message-ID: <54741.80.232.16.66.1030628383.squirrel@www.yazzy.org> Date: Thu, 29 Aug 2002 15:39:43 +0200 (CEST) Subject: RE: Port forwarding recommendations? From: "Marcin Jessa" To: Importance: Normal X-MSMail-Priority: Normal X-Priority: 3 Reply-To: yazzy@yazzy.org X-Mailer: h4x0r mail yazzy.org (version 1337) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi www.fwbuilder.org may be of interest as well Mire, John said: > try www.netboz.org it's FreeBSD based and it's almost an appliance as > far as setup is concerned. > > -----Original Message----- > From: Dylan Carlson [mailto:absinthe@pobox.com] > Sent: Tuesday, August 27, 2002 6:15 AM > To: freebsd-isp@FreeBSD.ORG > Subject: Port forwarding recommendations? > > > Hi, > > There are volumes of mailing list messages out there on the subject of > firewalls, but the solutions for different circumstances are not clear. > Your > recommendations would be appreciated. > > I have a simple low-end pentium box I want to do the following: > > - Firewall (ipfilter or ipfw, comfortable with either one) > - One external IP assigned via DHCP (from the ISP) > - One internal IP serving as a gateway address for a private class C - > NAT sharing to 4-5 hosts on the protected, internal subnet > - Inbound port forwarding > > ...where "port forwarding" means listening on a port on the external > interface > of the firewall and forwarding to a specified internal host for the > rule. I > > have looked at [ /usr/ports/net/portfwd ] but I am not sure how well/if > this > > works with any of the NAT and firewall implementations. > > Wondering which components you would use, why - and any caveats. I > would be > > thankful for any references as well. > > Provided I am successful with this I plan on writing up a procedure in > DocBook > and and kicking it over to the FreeBSD documentation project. > > TIA, > -- > Dylan Carlson [absinthe@pobox.com] > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- -- Marcin M. Jessa Software developer/System Administrator Wireless Reading Systems ASA Skreddervn 9 N-1537 Moss Norway http://www.wrs.no Phone: +47 69 27 96 88 Cellular: +47 988 505 44 ----------- My opinions may have changed, but not the fact that I am right. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message