From owner-freebsd-questions Thu May 10 21:38: 3 2001 Delivered-To: freebsd-questions@freebsd.org Received: from web14104.mail.yahoo.com (web14104.mail.yahoo.com [216.136.172.134]) by hub.freebsd.org (Postfix) with SMTP id 1A52237B424 for ; Thu, 10 May 2001 21:38:01 -0700 (PDT) (envelope-from k_greenwood1@yahoo.com) Message-ID: <20010511043801.10375.qmail@web14104.mail.yahoo.com> Received: from [216.95.179.28] by web14104.mail.yahoo.com; Thu, 10 May 2001 21:38:01 PDT Date: Thu, 10 May 2001 21:38:01 -0700 (PDT) From: "K. Greenwood" Subject: Re: squid & ipf To: Alexandr Alov , freebsd-questions@freebsd.org In-Reply-To: <01051023505001.00278@max.myhome.ru> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG This link has helped me on many occasions. http://www.mostgraveconcern.com/freebsd/ On the left frame, is "Setting-up a Dual-Homed Host". Hope this helps. --- Alexandr Alov wrote: > Hello ! > Now i am install ipf . > I have two network cards in one server > ed0 --- 193.163.3.1/24 ----- InterNET > ed1 --- 192.168.1.1/24 ----- LAN > server have squid for cache LAN > i am write next : > pass in proto tcp from any to 193.163.3.1 port = > 3128 flags A/A > pass out proto tcp from 193.163.3.1 port = 3128 to > any flags A/A > pass in proto udp from any to 193.163.3.1 port = > 3130 > pass out proto udp from 193.163.3.1 port = 3130 to > any > But this is don't work :(( > If clients setup proxy server ---- not connect to > InterNET > How i can write rules in ipf that sqid will > invisible on InteNET > and granted for LAN ? > Thanks. __________________________________________________ Do You Yahoo!? Yahoo! Auctions - buy the things you want at great prices http://auctions.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message