From owner-freebsd-questions  Thu Jul  9 12:54:21 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id MAA15296
          for freebsd-questions-outgoing; Thu, 9 Jul 1998 12:54:21 -0700 (PDT)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from leaf.lumiere.net (j@leaf.lumiere.net [207.218.152.15])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA15272
          for <freebsd-questions@freebsd.org>; Thu, 9 Jul 1998 12:54:17 -0700 (PDT)
          (envelope-from j@leaf.lumiere.net)
Received: (from j@localhost)
	by leaf.lumiere.net (8.9.1/8.9.1) id MAA20990;
	Thu, 9 Jul 1998 12:54:12 -0700 (PDT)
Date: Thu, 9 Jul 1998 12:54:12 -0700 (PDT)
From: Jesse <j@lumiere.net>
To: freebsd-questions@FreeBSD.ORG
Subject: natd for only certain IPs
Message-ID: <Pine.BSF.3.96.980709125053.20977A-100000@leaf.lumiere.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


Hi,

I just setup natd to connect a private ethernet network to the internet.

The private network is on fxp1 and the public network is on fxp0. Using
the basic rules in the natd man page, the private network can access the
public successfully.

However, I don't want ANYONE coming in over the fxp1 interface to be able
to access the net. I want to limit it to 3-5 IP addresses (vs the 300+
machines the private network). 

How can I restrict access to the internet to only the IP addresses I
select?

Thanks,

---
Jesse <j@lumiere.net>
http://www.lumiere.net/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message