Date: Tue, 19 Dec 2000 21:24:26 -0600 From: "Victor R. Cardona" <vcardona@home.com> To: brueggma@snoopie.yi.org Cc: questions@FreeBSD.ORG Subject: Re: ipfw/gateway Message-ID: <3A40266A.6060801@home.com> References: <20001219200559.A80329@snoopie.yi.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Eric Brueggmann wrote:
> Hello,
>
> I was wondering if any knows where I can find some info on setting
> up a firewall with ipfw and allowing all the boxes behind the gateway/firewall
> access to the net. I thought this would do it:
>
> # Allow all from the inside.
> ${fwcmd} add pass all from any to any via ${iif}
> ${fwcmd} add pass all from any to any out via ${oif}
>
> but it dosen't quite work. I still can't check out the web from behind
> the firewall. I'm using the "simple" ipfw firewall with the only modifications
> above. I was unable to ping the gateway/firewall from the client till I added
> those rules. Should I setup a proxy? But how am I gonna use napster? ;-)
> Or am I just plain confused on how this all works? Is there an easier way,
> then setting up a complicated ipfw rule set?
The Handbook has a section on firewalls and NAT. You might also want to
read man natd, and man ipfw. Finally, take a look at /etc/rc.firewall.
HTH
Victor Cardona
vcardona@home.com
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A40266A.6060801>