Date: Thu, 17 Aug 2000 21:00:45 -0500 From: "Chris Silva" <bitsurfer@mediaone.net> To: "SILVER, MICHAEL A" <MSILVER@scana.com>, "'freebsd-questions@FreeBSD.org'" <freebsd-questions@FreeBSD.ORG> Subject: RE: Problem with FreeBSD behind a firewall Message-ID: <KCELIGPCPGAIDMNBHMOGOEFNDCAA.bitsurfer@mediaone.net> In-Reply-To: <DBB3921EFE2AD211A81500A0C9B5FE760579457F@msg04.scana.com>
next in thread | previous in thread | raw e-mail | index | archive | help
The problem is (that I see) is that with all the nifty links out in the world that tell you how to do NAT, IPFW, cable modems etc. None of which (that I have seen) are of today's FBSD (4.1-STABLE) I agree, many of the links referenced in the FBSD archive are either way outdated, and or dead, or are to another link that has no relation to FBSD at all. In my case, I have yet to see how (examples) how your able to let boxen on the inside of your network actually AUTH to ANY IRC server. I realize that it takes time to "update" ones docs on how they did things however, to see users "telling" you to look to the same old outdated links and archives is depressing. Almost makes ya wanna have a look-see at what OpenBSD is doing to firewalling... At least there seems to be relevant links and docs that seem to me, be up to date... Just my lame-assed .02 copperheads #-----Original Message----- #From: owner-freebsd-questions@FreeBSD.ORG #[mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of SILVER, MICHAEL #A #Sent: Thursday, August 17, 2000 11:05 AM #To: 'freebsd-questions@FreeBSD.org' #Subject: Problem with FreeBSD behind a firewall # # #I have a situation where my FBSD machine sits behind a hardware #firewall and #is inaccessible from the outside world. The problem is, it needs to be #accessible. The HW firewall is setup to pass all traffic to a specific #internet IP to the FBSD firewall, but this appears not to be happening, OR #the FBSD machine is not responding properly. I need to find out which is #the problem and correct it. (I don't have access to the HW firewall) # #FYI: The FBSD machine also acts as a firewall for a small subnet. # So there #are actually two firewalls (see diagram below). Currently everyone on the #internal net can access the internet successfully. I am using #ifpw and natd #for this. Only incoming traffic is failing. # # Internet FBSD Firewall # o---(public addresses)----o----(10.0.20)-----o----(172.16.1)-----o # HW Firewall Internal Net # #My question is this, do I need to assign the valid internet #address from the #HW firewall to the FBSD box so that it can respond to outside requests #properly? Currently it is dual homed, but with private addresses. I tried #using an IP alias, and this made NATD bomb. Will logging show if #traffic is #actually being passed through the hardware firewall to the FBSD machine? # #I would include config files, but I don't currently have access to the #machine. If this is where the problem may lie, I will get access. People #on the internal net AND on the 10.0.20 net can access the FBSD #machine, just #not people from the internet. # #...Thanks... #...Michael Silver... # #P.S. I did find some messages relating to such situations, however the #links they provided were either invalid or didn't contain relevant #material. # # #To Unsubscribe: send mail to majordomo@FreeBSD.org #with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?KCELIGPCPGAIDMNBHMOGOEFNDCAA.bitsurfer>