From owner-freebsd-questions Thu Nov 2 11:21:18 2000 Delivered-To: freebsd-questions@freebsd.org Received: from smtp.nettoll.com (unknown [212.155.143.61]) by hub.freebsd.org (Postfix) with ESMTP id 4E1D637B4CF for ; Thu, 2 Nov 2000 11:21:14 -0800 (PST) Received: by smtp.nettoll.com; Thu, 2 Nov 2000 20:18:25 +0100 (MET) Message-Id: <4.3.0.20001103201229.02ccd8b0@pop.free.fr> X-Sender: usebsd@pop.free.fr X-Mailer: QUALCOMM Windows Eudora Version 4.3 Date: Fri, 03 Nov 2000 20:20:38 +0100 To: "Don Sutter" , From: mouss Subject: Re: IP Aliasing and FreeBSD 4.1.1 In-Reply-To: <000d01c05c09$68bc3600$20180142@phx76216> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi, by ip aliasing, do you mean NAT? note also that BSDi and FreeBSD are different systems, though there are many common things. I don't use IPFW, so I can't help you here other than suggesting that you check the ipfw@freebsd.org mailing list archive. but you can use IP filter instead. It comes with FreeBSD. documentation is available at the official site: http://coombs.anu.edu.au/~avalon/ip-filter.html mainly, you'll need to compile the kernel with the options IPFILTER and probably IPFILTER_LOG enabled. then check the howto and other docs at the URL above. if you need more infos, send me a private mail and I'll try to help. At 19:41 01/12/00 -0700, Don Sutter wrote: >I am running a private network (192.168.x.x) and recently >added a high speed ethernet internet connection on a static >public IP address. I would like to set up IP Aliasing (so >all my private machines can access the internet) and setup >firewall protection for my private network. I bought a >Version 4 FreeBSD Power Pak and discovered that it contained >a 3rd Edition "Complete FreeBSD" book. A also downloaded >and installed the latest FreeBSD 4.1.1 in a multi homed >machine and I downloaded and printed the latest FreeBSD >Handbook. > >I figured out how to re-compile the kernel with "options >IPFIREWALL", "options IPDIVERT" and even figured out how to >get my sound card working but the description of rc.firewall >in my Version 3 Complete FreeBSD book looks quite different >than /etc/rc.firewall on my system. I thought I'd start by >adding the three lines at the top of page 507 to my >rc.firewall file but now I'm not sure of where to put them. > >/sbin/ipfw -f flush >/sbin/ipfw add divert natd all from any to any via ed0 >/sbin/ipfw add pass all from any to any > >I use ed0 instead of tun0 as used in the book. > >Am I looking at the wrong manual? Did rc.firewall change >between BSDi v3 and 4. Allowing private network machines to >access the internet via IP Aliasing and a multi-homes BSDi >box sounds simple enough. Perhaps someone out there could >point me in the right direction... > >Thanks > >Don > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message