From owner-freebsd-questions  Wed May 20 16:14:31 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id QAA20808
          for freebsd-questions-outgoing; Wed, 20 May 1998 16:14:31 -0700 (PDT)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from server4.mpcbbs.com.br (server4.mpc.com.br [200.246.0.252])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA20722
          for <freebsd-questions@FreeBSD.ORG>; Wed, 20 May 1998 16:14:06 -0700 (PDT)
          (envelope-from capriotti@geocities.com)
Received: from hot_nt (d1p28.mpcnet.com.br [200.246.29.93])
	by server4.mpcbbs.com.br (8.8.6/8.8.6) with SMTP id UAA00878
	for <freebsd-questions@FreeBSD.ORG>; Wed, 20 May 1998 20:13:51 -0300 (EST)
Message-Id: <3.0.32.19691231210000.0094a9c0@pop.mpc.com.br>
X-Sender: capriotti@pop.mpc.com.br (Unverified)
X-Mailer: Windows Eudora Pro Version 3.0 (32)
Date: Wed, 20 May 1998 20:14:48 -0300
To: freebsd-questions@FreeBSD.ORG
From: Capriotti <capriotti@geocities.com>
Subject: IPFW and dial-up link to internet
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Hello !

I am attempting to set up a dial-up connection to the internet using
dynamic IP.

the connection works great and it was done "by the book", following
instrucions at the ppp man pages and docs at FBSD site.

The point I have to discuss is how to use IPFW with a dynamic IP environment.

My doubt, basically is how to set up these lines:

 # set these to your outside interface network and netmask and ip
    oif="tun0"                # I am using tun0 to connect
    onet="200.246.0.0"        # My ISP's address is 200.246.0.252
    omask="255.255.255.0"     # I guess this is right
    oip="192.168.4.17"        # I have no idea what I should put here


    # set these to your inside interface network and netmask and ip
    iif="ed1"                 # my network card
    inet="192.168.0.0"        # the internal network
    imask="255.255.255.0"     # the mask seems to be ok also
    iip="192.168.0.30"        # the internal IP

Next I am using basically al the rules from "simple", at the rc.firewall
file, plus a couple more to ensure that netbios is not being manipulated
from outside, and also telnet will work within the LAN only.

Could someon take a look at those lines and give me some advice ?

Is there anything wrong there ? Any other enhancements ?

Thank you.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message