From owner-freebsd-ipfw  Mon Mar  6 19:59:53 2000
Delivered-To: freebsd-ipfw@freebsd.org
Received: from atlas.usls.edu (atlas.usls.edu [202.47.133.46])
	by hub.freebsd.org (Postfix) with ESMTP id 2AE5037BD03
	for <freebsd-ipfw@freebsd.org>; Mon,  6 Mar 2000 19:59:44 -0800 (PST)
	(envelope-from francis@usls.edu)
Received: by atlas.usls.edu (Postfix, from userid 1001)
	id C0FCC9B1D; Tue,  7 Mar 2000 11:59:11 +0800 (PHT)
Received: from localhost (localhost [127.0.0.1])
	by atlas.usls.edu (Postfix) with ESMTP id B54EB5D17
	for <freebsd-ipfw@freebsd.org>; Tue,  7 Mar 2000 11:59:11 +0800 (PHT)
Date: Tue, 7 Mar 2000 11:59:11 +0800 (PHT)
From: "Francis A. Vidal" <francis@usls.edu>
To: FreeBSD IPFW <freebsd-ipfw@freebsd.org>
Subject: howto
Message-ID: <Pine.BSF.4.21.0003071149180.28918-100000@atlas.usls.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-ipfw@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Hi all,

I'm about to build a firewall using FreeBSD 4.0RC2 and I want to know
if there are pointers available on the web on how to build one.

My setup
--------

[internet]---[router]---[switch]
                          |   |
                          |   +---[office network]
                          |
                          +---[public servers]
                          |
                          +---[workstations w/ private IPs]

i want to block off some traffic (and probably limit the bandwidth) in
between the switch and office network. i only want the office
workstations to access ports 80, 443, 563, 3128, 21, and 25. there's
one workstation in the office network that has a public IP address
that i want to exclude from the policy.



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message