From owner-freebsd-questions  Thu Sep 17 00:55:00 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id AAA16597
          for freebsd-questions-outgoing; Thu, 17 Sep 1998 00:55:00 -0700 (PDT)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from gus.orgus.ru ([195.16.115.189])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA16477
          for <freebsd-questions@freebsd.org>; Thu, 17 Sep 1998 00:54:29 -0700 (PDT)
          (envelope-from adm@gus.orgus.ru)
Received: from suhov.orgus.ru (suhov.orgus.ru [195.16.115.187])
	by gus.orgus.ru (8.8.5/8.8.5) with ESMTP id NAA29780
	for <freebsd-questions@freebsd.org>; Thu, 17 Sep 1998 13:53:45 +0600 (ESS)
Message-Id: <199809170753.NAA29780@gus.orgus.ru>
From: "mtts" <adm@gus.orgus.ru>
To: "FreeBSD" <freebsd-questions@FreeBSD.ORG>
Subject: IPFilter
Date: Wed, 17 Sep 2098 13:53:58 -1000
X-MSMail-Priority: Normal
X-Priority: 3
X-Mailer: Microsoft Internet Mail 4.70.1155
MIME-Version: 1.0
Content-Type: text/plain; charset=KOI8-R
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from base64 to 8bit by hub.freebsd.org id AAA16529
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Hi!

I have installed IPFilter3.2.9 on my FreeBSD2.2.1. During the installation
it gave me a lot of warnings saying that something wrong with some
variables in C-files. But everything seem to work properly, at least
ipnat. I am not too keen in IPFilters yet and can not fully understand how
to configure it. Can you help me in two cases:

 1. One computer serves as a Proxy-server and Firewall. It has two
    network cards. One connected to the Internet and the other to our LAN.
    I want:
     a) both inside and outside users can use the Proxy(tcp port-3128, udp
        port-3130);
     b) inside users can receive their mail from the outside email-server
        (popper)
     c) All other things are prohibited. I mean to say nobody can connect
        to the computer, with the exception of I can telnet and ftp to it
        from a dedicated computer in my network.

 2. One more computer serves as DNS, email(sendmail and qpopper) and
    terminal server for the connection of the remote users using ppp.
    I want:
     a) All the traffic can be passed through the computer between the
        remote users and Internet freely;
     b) The computer can serve:
          - DNS requests from anywhere;
          - receive the mail from Internet and deliver it to the users and
            vice versa (popper);
     c) All other connections to the computer are prohibited, except one
        dedicated computer in my network.

Thank You.




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message