Date: Thu, 9 Jul 1998 21:31:18 -0500 (CDT) From: "Daniel M. Eischen" <deischen@iworks.interworks.org> To: j@lumiere.net Cc: questions@FreeBSD.ORG Subject: Re: natd for only certain IPs Message-ID: <199807100231.VAA02224@iworks.interworks.org>
next in thread | raw e-mail | index | archive | help
> I just setup natd to connect a private ethernet network to the internet. OK so far. > The private network is on fxp1 and the public network is on fxp0. Using > the basic rules in the natd man page, the private network can access the > public successfully. > > However, I don't want ANYONE coming in over the fxp1 interface to be able > to access the net. I want to limit it to 3-5 IP addresses (vs the 300+ > machines the private network). > > How can I restrict access to the internet to only the IP addresses I > select? Only divert those addresses. Use firewall rules to restrict the remaining private addresses from going out on the public interface. I can send you the firewall rules we use on a 4 port router. One of these ports is a private network, while the others are legal/public addresses. Dan Eischen deischen@iworks.InterWorks.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199807100231.VAA02224>