From owner-freebsd-security Mon Mar 24 15:36:56 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id PAA19718 for security-outgoing; Mon, 24 Mar 1997 15:36:56 -0800 (PST) Received: from dns.pinpt.com (dns.pinpt.com [205.179.195.1]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id PAA19707 for ; Mon, 24 Mar 1997 15:36:53 -0800 (PST) Received: from rover4 (gatemaster.pinpt.com [205.179.195.65]) by dns.pinpt.com (8.6.12/8.6.12) with SMTP id PAA09107; Mon, 24 Mar 1997 15:34:59 -0800 Date: Mon, 24 Mar 97 15:35:23 Pacific Standard Time From: "Sean J. Schluntz" Subject: Re: =?ISO-8859-1?Q?=B4One_Direction=B4_Routed?= To: =?ISO-8859-1?Q?Ricardo_N=FA=F1ez?= , FreeBSD Security X-Mailer: Chameleon ATX 6.0, Standards Based IntraNet Solutions, NetManage Inc. X-Priority: 3 (Normal) References: <19970321213136.AAA9659@telcel.telcel.net.ve> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-security@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk > I´d just want to know if the following project were possible with a FreeBSD > computer: > > If we could use a FreeBSD PC computer as a router between an Ethernet LAN > and Internet but in one direction. I mean: A LAN host could access > Internet, but an outside Internet host SHOULDN´T access an inside host, > just access that ´router´. An outside host could see the FreeBSD Web > Browser and anything else in the FreeBSD machine only. You could use a filter, or you could use a proxy (I prefur the proxy my self.) Look at http://www.tis.com look for The Fire Wall Tool Kit (FWTK). -Sean ---------------------------------------------------------------------- Sean J. Schluntz Manager, Support Services ph. 408.997.6900 x222 PinPoint Software Corporation fx. 408.323.2300 6155 Almaden Expressway, Suite 100 San Jose, CA. 95120 http://www.pinpt.com/ Local Time Sent: 03/24/97 15:35:24 ----------------------------------------------------------------------