From owner-freebsd-questions@FreeBSD.ORG  Thu Oct  2 04:57:44 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E5F3316A4B3
	for <freebsd-questions@freebsd.org>;
	Thu,  2 Oct 2003 04:57:44 -0700 (PDT)
Received: from buh.cameradicommercio.ro (buh.cameradicommercio.ro
	[81.196.25.19])	by mx1.FreeBSD.org (Postfix) with ESMTP id 50AAB43FE5
	for <freebsd-questions@freebsd.org>;
	Thu,  2 Oct 2003 04:57:23 -0700 (PDT)
	(envelope-from itetcu@apropo.ro)
Received: from buh.cameradicommercio.ro (localhost [127.0.0.1])
	by buh.cameradicommercio.ro (Postfix) with SMTP
	id E3AD8DA; Thu,  2 Oct 2003 14:57:21 +0300 (EEST)
Date: Thu, 2 Oct 2003 14:57:19 +0300
From: Ion-Mihai Tetcu <itetcu@apropo.ro>
To: "Dead Line" <dead_line@hotmail.com>
Message-Id: <20031002145719.120ddb54.itetcu@apropo.ro>
In-Reply-To: <BAY9-F42P2SRrCnL5vJ000151a6@hotmail.com>
References: <BAY9-F42P2SRrCnL5vJ000151a6@hotmail.com>
X-Mailer: Sylpheed version 0.9.3claws (GTK+ 1.2.10; i386-portbld-freebsd5.1)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
cc: freebsd-questions@freebsd.org
Subject: Re: Fbsd gateway+restrictions
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Oct 2003 11:57:45 -0000

On Thu, 02 Oct 2003 11:07:04 +0000
"Dead Line" <dead_line@hotmail.com> wrote:

> Hello Everybody,

Hi,


Please wrap at 72 characters. Now  you have 78 and it's looking like a mess.

>     I have a DSL Router <--connected--> internet <--connected-->
>     FreeBSD 
> 4.8-R box
>     And this FBSD connected to a Hub which connected to around 20
>     PC's 
> (Win98+XP) on a LAN.
>     Easy? its just a DSL LAN.
> 
> 1)
>     I want This Box to work as a Internet gateway, and to share the
>     internet 
> between the PC'S
>     thro this box.
>     shall i just enable the gateway enable 'yes' ? only? it will
>     share the 
> net to?

Do you need NAT to ? probably yes.

man 8 natd

> 2) How can i do restrictions on  the LAN? for example, I want to
> give this specific IP an Internet
>     connection, and i want to block that one.

man 7 firewall
man 8 ipfw

> 3) I want to allow this specific IP to have downloads enables, and
> other IP, no downloads.

Don't know what you understand by "downloads". ftp ? http ?
use ipfw to deny specific ports to specific users / ips.

> 4) Also can i setup a timing ? to give internet connection from this
> time to that time per day?

see list support in ipfw, setup different rule sets and make use of cron.

See Ch.19.2 and ch. 19.12 from the handbook.

Post back after that if something is not working.

Oh, and use IPFW2 (see the middle of the ipfw man page, I don't remember if it is the default on 4.8)

-- 
IOnut
FreeBSD unregistered ;) user