From owner-freebsd-questions Wed Sep 30 22:15:39 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA14146 for freebsd-questions-outgoing; Wed, 30 Sep 1998 22:15:39 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from servidor.exsocom.com.mx (servidor.exsocom.com.mx [200.34.46.130]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id WAA14100; Wed, 30 Sep 1998 22:15:27 -0700 (PDT) (envelope-from agalindo@servidor.exsocom.com.mx) Received: from servidor.exsocom.com.mx (servidor.exsocom.com.mx [200.34.46.130]) by servidor.exsocom.com.mx (8.8.7/8.8.5) with SMTP id AAA25087; Thu, 1 Oct 1998 00:22:30 -0500 (CDT) Date: Thu, 1 Oct 1998 00:22:30 -0500 (CDT) From: Alejandro Galindo Chairez AGALINDO To: questions@FreeBSD.ORG cc: freebsd-security@FreeBSD.ORG Subject: Firewall with 2 NIC and a NET class C Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hello! I have a network class C (conected to Internet), some hackers are cracking my server and i need to install a firewall. I have 2 xl NIC's (xl0 and xl1), but i dont know how will be the rc.firewall configuration and how i can protect all my network for outside attacks. In the rc.firewall i use the "simple" firewall type, but i dont understand how i can divide my network class C in 2 networks (with a mask 255.255.255.128 sample). I need to have real internet ip's in the 2 NIC's becouse i want to protect my WWW and e-mail servers. Here is a sample of what i have and what i need: INTERNET | | My router (208.195.117.2) | | ----------------------- (network class C 208.195.117.*) | | | | | | WWW server email server and PCs 208.195.117.11 208...12 208...13 (sample) I need to protect all my network and i think the solution can be: INTERNET | | ROUTER (208.195.117.2) | | maybe mask 255.255.255.128 FIREWALL (208.195.117.14) xl0 (first NIC) | | 208.195.117.129 xl1 (second NIC) of the firewall ------------------------ | | | maybe mask 255.255.255.128 | | | WWW server email server PC's ... 208.195.117.130 208...131 208...132 etc Please i need help i how to plain the network and how to indicate the rules in the rc.firewall Iam desesperate becouse my network is attacked. Thanks in advanced Alejandro Galindo ---------------------------------------------------------------------------- | , , | | /( )` | | \ \___ / | | | /- _ `-/ ' | | (/\/ \ \ /\ | | ExSoCom Dgo. MEXICO / / | ` \ | | O O ) / | | | `-^--'`< ' | | (_.) _ ) / | | Alejandro Galindo `.___/` / | | Tel: (52 18) 179177 `-----' / | | Fax: (52 18) 185155 <----. __ / __ \ | | <----|====O)))==) \) /==== | | e-mail alejandro.galindo@exsocom.com.mx <----' `--' `.__,' \ | | | | | | http://www.exsocom.com.mx \ / /\| | ______( (_ / \______/ | | ,' ,-----' | | | a FreeBSD ISP `--{__________) | ---------------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message