From owner-freebsd-questions Tue Sep 10 11: 6:47 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 922CB37B401 for ; Tue, 10 Sep 2002 11:06:23 -0700 (PDT) Received: from kyblik.pieskovisko.sk (kyblik.pieskovisko.sk [213.215.72.42]) by mx1.FreeBSD.org (Postfix) with SMTP id 7C5B943E4A for ; Tue, 10 Sep 2002 11:06:22 -0700 (PDT) (envelope-from frankie@kyblik.pieskovisko.sk) Received: (qmail 31986 invoked by uid 19508); 10 Sep 2002 18:07:09 -0000 Date: Tue, 10 Sep 2002 20:07:09 +0200 From: "Michal F. Hanula" To: questions@freebsd.org Subject: Re: One way cable modem/ipfilter Message-ID: <20020910180708.GC38872@kyblik.pieskovisko.sk> Mail-Followup-To: "Michal F. Hanula" , questions@freebsd.org References: <20020910150140.7A1E49370A@server2.fastmail.fm> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="Qz2CZ664xQdCRdPu" Content-Disposition: inline In-Reply-To: <20020910150140.7A1E49370A@server2.fastmail.fm> User-Agent: Mutt/1.5.1i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --Qz2CZ664xQdCRdPu Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Sep 10, 2002 at 03:01:40PM +0000, Cherie Powell wrote: > I am using IPNAT already, so I'm set there. Now all I need is for > someone to tell me "precisely what needs to be done." :-) >=20 > Cherie >=20 >=20 > On Mon, 9 Sep 2002 23:06:16 -0500, "Charles Pelletier" > said: > > yeah it can, you just have to use IPNAT instead. > > just add that and IPFILTER and IPDIVERT to your kernel and recompile > > for > > starters if you haven't already then let these guys tell you precisely > > what > > needs to be done. > >=20 > > options IPDIVERT > > options IPFILTER > > options IPMON #to log everything IPDIVERT is quite unnnecessary - it is only needed for natd while you are probably going to use ipnat (man ipnat, man natd). natd is used with ipfw (but then you should have options IPFIREWALL) m&f --=20 The danger from computers is not that they will eventually get as smart as men but that we will meanwhile agree to meet them halfway. --Qz2CZ664xQdCRdPu Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD4DBQE9fjTLQgEMP0l2aH4RAq/zAJ479/DiigS+8mIW6DPtLKHFF7sJ+QCXfOhZ zNZ6maSk+BHhAp/Uz02rVQ== =cpra -----END PGP SIGNATURE----- --Qz2CZ664xQdCRdPu-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message