From owner-freebsd-security Fri Apr 21 11:12:45 2000 Delivered-To: freebsd-security@freebsd.org Received: from fw.wintelcom.net (ns1.wintelcom.net [209.1.153.20]) by hub.freebsd.org (Postfix) with ESMTP id 7FB8B37BCD0 for ; Fri, 21 Apr 2000 11:12:42 -0700 (PDT) (envelope-from bright@fw.wintelcom.net) Received: (from bright@localhost) by fw.wintelcom.net (8.10.0/8.10.0) id e3LIfBn16991; Fri, 21 Apr 2000 11:41:11 -0700 (PDT) Date: Fri, 21 Apr 2000 11:41:10 -0700 From: Alfred Perlstein To: Ron Smith Cc: freebsd-security@FreeBSD.ORG Subject: Re: Using proxys with ipfw Message-ID: <20000421114110.D10782@fw.wintelcom.net> References: <20000421175830.78962.qmail@hotmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0.1i In-Reply-To: <20000421175830.78962.qmail@hotmail.com>; from ronnetron@hotmail.com on Fri, Apr 21, 2000 at 10:58:30AM -0700 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org * Ron Smith [000421 11:28] wrote: > Hello All, > > I'm trying to determine if it's possible to implement smtp/pop, ftp, and www > proxys with ipfw rules in place. If it is possible, which proxy software > would be the best to use. I have a dual-homed gateway with ipfw rules in > place. Everything works great , but I only have access to and from the > Internet with NAT, at this point. I would like to add the ability to access > a mail server behind a firewall from the outside world. I would also like to > do the same for www and ftp services as well. Any pointers? I'm pretty sure both ipfw and natd offer a "forward port" option, just check out the docs, it should be there. I would try the ipfw stuff first as it's probably more effecient. -- -Alfred Perlstein - [bright@wintelcom.net|alfred@freebsd.org] "I have the heart of a child; I keep it in a jar on my desk." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message