From owner-freebsd-questions Wed May 23 16:57:26 2001 Delivered-To: freebsd-questions@freebsd.org Received: from apollo.gti.net (apollo.gti.net [199.171.27.7]) by hub.freebsd.org (Postfix) with ESMTP id 4939637B424 for ; Wed, 23 May 2001 16:57:24 -0700 (PDT) (envelope-from y3k@gti.net) Received: from sludge.amc-inc.com (ts5m-pool0-215.gti.net [208.216.126.215]) by apollo.gti.net (mail) with ESMTP id A00E3145AE3; Wed, 23 May 2001 19:57:22 -0400 (EDT) Message-ID: X-Mailer: XFMail 1.4.0 on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit MIME-Version: 1.0 In-Reply-To: <200105232343.f4NNhjE37946@fac13.ds.psu.edu> Date: Wed, 23 May 2001 18:50:51 -0400 (EDT) Reply-To: Mark Yeck From: Mark Yeck To: dochawk@psu.edu Subject: Re: safely briding from internet to "localnet" Cc: freebsd-questions@FreeBSD.ORG Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On 23-May-01 dochawk@psu.edu wrote: > yep, I found that page too, and most of it was wonderful. But that > section just refers you on to natd, which is what I know absolutely > nothing about. > > When I added both of those to my kernel (and maybe I added the line in > /etc/rc.firewall ?) I ended up with a kernel that couldn't handle the > network at all. > > If you can provide the ipfw/natd rules and where to put them, I'd > greatly appreciate it. > > hawk ah. well, unfortunately that machine is at work and i'm at home, so i cant look directly at it, but if i remember correctly, i added the following junk to /etc/rc.conf: gateway_enable="YES" firewall_enable="YES" natd_enable="YES" firewall_type="OPEN" try that out. i think briefly i had no networking at all, but i think that stuff fixed it. -mark To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message