From owner-freebsd-questions Tue Feb 29 20:10:44 2000 Delivered-To: freebsd-questions@freebsd.org Received: from cytosine.dhs.org (cx272244-a.orng1.occa.home.com [24.1.177.149]) by hub.freebsd.org (Postfix) with ESMTP id 74E3937BED4 for ; Tue, 29 Feb 2000 20:10:41 -0800 (PST) (envelope-from bhishan@cytosine.dhs.org) Received: (from bhishan@localhost) by cytosine.dhs.org (8.9.3/8.9.3) id UAA13533; Tue, 29 Feb 2000 20:10:39 -0800 (PST) (envelope-from bhishan) From: Bhishan Hemrajani Message-Id: <200003010410.UAA13533@cytosine.dhs.org> Subject: Re: natd/rc.firewall examples wanted In-Reply-To: <38BC81A8.821128C4@home.com> from Peter Schwenk at "Feb 29, 2000 09:34:16 pm" To: Peter Schwenk Date: Tue, 29 Feb 2000 20:10:39 -0800 (PST) Cc: freebsd-questions@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL68 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG You don't really need rules for your internal network. Here's an example rc.firewall: $fwcmd -f flush $fwcmd add 10 divert natd all from any to any via de1 $fwcmd add 65000 allow all from any to any Change de1 to the ethernet card connected to your modem. and start natd with: natd -n de1 again, change de1. --bhishan > Hello: > > I've recently gotten cable modem service, and I've got two home PCs > networked. The cable modem-connected computer has two NICs (duh.), and > I was hoping that someone could point me toward a good "starter set" of > rules for protecting a home network (192.168.1.0/24 addresses used for > internal network). The "simple" and "client" sets of rules in > rc.firewall didn't seem suited. > > Any information/advice would be greatly appreciated. > > -- > - Peter Schwenk > - peterschwenk@home.com > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message