Date: Tue, 23 Jul 2002 12:43:07 -0700 (PDT) From: Julian Elischer <julian@elischer.org> To: "Tobias P. Santos" <tpeixoto@widesoft.com.br> Cc: freebsd-net@FreeBSD.ORG Subject: Re: Firewall and DMZ Message-ID: <Pine.BSF.4.21.0207231241530.7108-100000@InterJet.elischer.org> In-Reply-To: <3D3DAD4B.A6C6AEC@widesoft.com.br>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 23 Jul 2002, Tobias P. Santos wrote: > Hello, > I would like to implement a firewall to my DMZ network, but > I am not sure about how to do it. > > +----------+ > | Internet | 123.456.789.254 > +----------+ > | > +------------------+ > | FreeBSD Firewall | 123.456.789.4 > +------------------+ > | > +-------------+-----------+ > | | | > | | | > | | | > +----------+ +---------+ +--------+ > | DNS | | Web | | E-mail | > | Server | | Server | | Server | > +----------+ +---------+ +--------+ > 123.456.789.1 123.456.789.2 123.456.789.3 > nice picture > > I know it is pretty easy to build ipfw rules when we have natd > (for my internal network for example), but I haven't figured out how to > forward packets between interfaces on the same network with valid IP > addresses. Unfortunatly the nice picture doesn't help me understand what your question is.. :-) some examples please.... > In fact, I'd like to have the same behavior of Drawbrigde > (drawbridge.tamu.edu), but it seems somewhat deprecated. > So, where should I start from? Is there a software to do that? > > If this is not the correct mailing list, please tell me the > right one and sorry for the incovenience. > Thank you in advance, > > -- > Tobias P. Santos > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0207231241530.7108-100000>