From owner-freebsd-questions  Thu Apr  5 13:59:56 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from mail3.mx.voyager.net (mail3.mx.voyager.net [216.93.66.202])
	by hub.freebsd.org (Postfix) with ESMTP id 8199237B43C
	for <freebsd-questions@FreeBSD.ORG>; Thu,  5 Apr 2001 13:59:52 -0700 (PDT)
	(envelope-from stewb@centurytel.net)
Received: from moe.ays.net (tnt1a-81.cleveland.corecomm.net [208.40.41.81])
	by mail3.mx.voyager.net (8.10.2/8.10.2) with ESMTP id f35Kxk112991
	for <freebsd-questions@FreeBSD.ORG>; Thu, 5 Apr 2001 16:59:47 -0400 (EDT)
Received: from localhost (stew@localhost)
	by moe.ays.net (8.9.3/8.8.6) with ESMTP id QAA19625
	for <freebsd-questions@FreeBSD.ORG>; Thu, 5 Apr 2001 16:38:18 -0400
Date: Thu, 5 Apr 2001 16:34:04 -0400 (EDT)
From: Stew Benedict <stewb@centurytel.net>
To: freebsd-questions@FreeBSD.ORG
Subject: RE: Traffic shaping natd dhcp and ipfw
In-Reply-To: <5.0.2.1.0.20010405113021.00a6fc00@pop.mail.yahoo.com>
Message-ID: <Pine.LNX.4.10.10104051632500.19580-100000@moe.ays.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


You can configure dhcpd with the Mac addresses of each machine's NIC, then
give them a fixed address, and let dhcpd define the gateway and
nameservers for the client machines.

Stew Benedict

On Thu, 5 Apr 2001, Kurtis Smith wrote:

> ---snipped----
> >Subject: Re: Traffic shaping natd dhcp and ipfw
> >
> >
> > > Well at my work they are wanting to block
> > > entire access including www, FTP, email for certain machines.
> >
> >  I don't know why you're looking at DHCP and leases.
> >
> >  Assuming your FreeBSD box is your gateway, you should be looking at
> >/etc/hosts.allow and /etc/hosts.deny I would think.
> >
> >  Or, adding some rules to ipfw.
> >
> >  I don't have any "links" to toss your way, but I'm sure 'man hosts' or
> >'man hosts.deny' etc may help.
> >
> >-Gerry
> 
> 
> 
> Ok so what I could do then is stop the DHCPD service
> which would suck for more computers adding to the network
> but hey the employer wants to do it so F#@$ em.  Then I could
> put each individual IP address in the /etc/hosts file right?
> 
> Then go around to every machine and specify IP addresses and
> also a default gateway ?
> 
> Or should I run a proxy and which one I have squid but do not know
> how to set it up right dam it I need a book heheheh.
> 
> Also I could setup IPFW rules if I knew how..
> 
> Man dam it which one is best to do?
> 
> I can't belive this Crap man unbelievable pain in the ass
> after all the work I've done too...
> 
> -Kurt
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
> 
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message