From owner-freebsd-questions Sat Oct 26 13:50:44 1996 Return-Path: owner-questions Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id NAA09038 for questions-outgoing; Sat, 26 Oct 1996 13:50:44 -0700 (PDT) Received: from dg-rtp.dg.com (dg-rtp.rtp.dg.com [128.222.1.2]) by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id NAA09024 for ; Sat, 26 Oct 1996 13:50:36 -0700 (PDT) Received: by dg-rtp.dg.com (5.4R3.10/dg-rtp-v02) id AA18049; Sat, 26 Oct 1996 16:50:03 -0400 Received: from ponds by dg-rtp.dg.com.rtp.dg.com; Sat, 26 Oct 1996 16:50 EDT Received: from lakes.water.net (lakes [10.0.0.3]) by ponds.water.net (8.7.5/8.7.3) with ESMTP id QAA02738 for ; Sat, 26 Oct 1996 16:08:35 -0400 (EDT) Received: (from rivers@localhost) by lakes.water.net (8.7.5/8.6.9) id QAA00403; Sat, 26 Oct 1996 16:09:05 -0400 (EDT) Date: Sat, 26 Oct 1996 16:09:05 -0400 (EDT) From: Thomas David Rivers Message-Id: <199610262009.QAA00403@lakes.water.net> To: ponds!freefall.cdrom.com!freebsd-questions, ponds!lakes.water.net!rivers Subject: IP-masquerading for private networks. Content-Type: text Sender: owner-questions@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Ok - I know this has been discussed/hinted at in the past. But, I'm hoping to get a real solid answer. I have one machine, which is, at times, connected to two networks. 1) My work network (a private network itself), and 2) my ISP. This machine is my primary gateway to the rest of "the world". [news/mail hub, etc...] Connected to this machine, via a small ethernet - are the remainder of the machines in my host - Win95 boxes, a couple other FreeBSD boxes, All of the machines in the house are on the 10.0.0.x private network. I'd like to have unfettered internet access to the world at-large. [Right now, I log onto the mail server, run a shell script to do the slattach and telnet/ftp from there.] I've seen some solutions: 1) IP masquerading implemented as part of the user-mode PPP. - This doesn't work for me because my connections are SL/IP. 2) socks5, running the socks server on the gateway and using "runsocks cmd.." to run the application. - This doesn't work for me because of the need to use Win/95. 3) ipfw - Do I need to set up a firewall to do this? Wasn't there some "poo-poo'ing" of this idea in the past? I'd appreciate any more alternatives people know of, and any suggestions people may want to offer. F.y.i - I'm running 2.1.5-STABLE, so suggestions pertinent to that would be best. - Thanks - - Dave Rivers -