From owner-freebsd-questions@FreeBSD.ORG Wed Aug 9 18:30:08 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CB56716A4E1 for ; Wed, 9 Aug 2006 18:30:08 +0000 (UTC) (envelope-from wash@wananchi.com) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2E31A43D45 for ; Wed, 9 Aug 2006 18:30:07 +0000 (GMT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.63 #0 (FreeBSD 4.11-STABLE)) id 1GAsoe-000M15-6O by authid for ; Wed, 09 Aug 2006 21:30:04 +0300 Date: Wed, 9 Aug 2006 21:30:04 +0300 From: Odhiambo Washington To: freebsd-questions@freebsd.org Message-ID: <20060809183004.GD73823@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-questions@freebsd.org References: <44DA230F.20407@2012.vi> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <44DA230F.20407@2012.vi> X-Disclaimer: Any views expressed in this message, where not explicitly attributed otherwise, are mine alone!. X-Mailer: Mutt 1.5.12 (2006-07-14) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. User-Agent: Mutt/1.5.12-2006-07-14 Subject: Re: Doing Routing On My Production Server X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Aug 2006 18:30:08 -0000 * On 09/08/06 14:01 -0400, beno wrote: | Hi; | I'm updating my firewall and I've found a nifty how-to that recommends | using a BSD box in front of another box as your firewall, using the | first as a router and passing one NIC to the other box. Can't all that | be done from the same box? Hi Beno, If you don't mind exposing the one box to the hostile Internet, then the answer is yes. Just block everything using the firewall on the same box. What is your concept of a firewall, by the way? -Wash http://www.netmeister.org/news/learn2quote.html DISCLAIMER: See http://www.wananchi.com/bms/terms.php -- +======================================================================+ |\ _,,,---,,_ | Odhiambo Washington Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 +======================================================================+ First Rule of History: History doesn't repeat itself -- historians merely repeat each other.