From owner-freebsd-questions Wed Sep 6 10:24:49 2000 Delivered-To: freebsd-questions@freebsd.org Received: from 2711.dynacom.net (2711.dynacom.net [206.107.213.3]) by hub.freebsd.org (Postfix) with ESMTP id F249437B422 for ; Wed, 6 Sep 2000 10:24:46 -0700 (PDT) Received: from urx.com (dsl1-160.dynacom.net [206.159.132.160]) by 2711.dynacom.net (Build 101 8.9.3/NT-8.9.3) with ESMTP id KAA00141; Wed, 06 Sep 2000 10:24:41 -0700 Message-ID: <39B67DD9.A65D9465@urx.com> Date: Wed, 06 Sep 2000 10:24:41 -0700 From: Kent Stewart Organization: Dynacom Net X-Mailer: Mozilla 4.75 [en] (Windows NT 5.0; U) X-Accept-Language: en,pdf MIME-Version: 1.0 To: Ignacio Cc: fbsd Subject: Re: firewalls for dummies (for me) References: <39B675B5.67924D6A@infovia.com.ar> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Ignacio wrote: > > I'm having problems with the firewall. > > i have another machine w/ win 98. i want to enable that machine to > acces the internet when i connect this via ppp. > > i bring up the ppp conection, but the other machine cant get to the > internet. > > have i some problems with the pol of ipfw? > > The kernel is compiled with this options: > ---start (some) kernel options--- > options MROUTING ## Multicast routing > options IPFIREWALL ##firewall > options IPFIREWALL_VERBOSE ##print information > about dropped packets > options IPFIREWALL_FORWARD ##enable transparent > proxy support > options "IPFIREWALL_VERBOSE_LIMIT=50" ##limit verbosity > #options IPFIREWALL_DEFAULT_TO_ACCEPT ##allow everything by > default NO! > options IPDIVERT ##divert sockets > options IPFILTER ##kernel ipfilter > support > options IPFILTER_LOG ##ipfilter logging > options TCPDEBUG > pseudo-device ppp 1 > pseudo-device tun 1 > ---end kernel options--- > > ---start (related) dmesg echo--- > IP packet filtering initialized, divert enabled, \ > rule-based forwarding enabled, logging limited to 50 packets/entry > IP Filter: initialized. Default = pass all, Logging = enabled > ---end dmesg echo--- > > ---start (related items) rc.conf--- > ifconfig_ed0="inet 192.168.1.1 netmask 255.255.255.0" > network_interfaces="ed0 lo0 tun0" > hostname="microbio.bbs" > firewall_enable="YES" > firewall_type="OPEN" > defaultrouter="YES" Not yes but the IP address of your ISP's router. Kent > gateway_enable="YES" > natd_enable="YES" > natd_interface="tun0" > natd_flags="-f /etc/natd.conf" > ---end rc.conf--- > > -- > Ignacio Zelaya > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message -- Kent Stewart Richland, WA mailto:kbstew99@hotmail.com http://kstewart.urx.com/kstewart/index.html http://daily.daemonnews.org/ SETI (Search for Extraterrestrial Intelligence) @ Home http://setiathome.ssl.berkeley.edu/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message