From owner-freebsd-questions Fri Aug 23 22:24: 5 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AD04C37B400 for ; Fri, 23 Aug 2002 22:23:59 -0700 (PDT) Received: from babyruth.hotpop.com (babyruth.hotpop.com [204.57.55.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id A10C943E6E for ; Fri, 23 Aug 2002 22:23:58 -0700 (PDT) (envelope-from rdwestsr@hotpop.com) Received: from hotpop.com (kubrick.hotpop.com [204.57.55.16]) by babyruth.hotpop.com (Postfix) with SMTP id 1CECB21211E for ; Sat, 24 Aug 2002 05:23:56 +0000 (UTC) Received: from papabear (unknown [66.169.41.53]) by smtp-1.hotpop.com (Postfix) with SMTP id 61BFB2F8143; Sat, 24 Aug 2002 05:23:53 +0000 (UTC) Message-ID: <000b01c24b2f$09c867b0$0a00a8c0@papabear> From: "RDWestSr@hotpop" To: Cc: References: <001401c24973$cf3fb240$0a00a8c0@papabear> <1029964281.226.6.camel@markx.vladsempire.net> Subject: Re: Firewall Help plz Date: Sat, 24 Aug 2002 01:28:11 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-HotPOP: ----------------------------------------------- Sent By HotPOP.com FREE Email Get your FREE POP email at www.HotPOP.com ----------------------------------------------- Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG hi guys, i'm trying to locate FreeBSD, get this now --> Nooo B Fied Resources, links and etc for any STEP by STEP FreeBSD Firewall Setups... I would greatly appreciate the support Thank You RDWestSr ----- Original Message ----- From: "Josh Paetzel" To: "RDWestSr@hotpop" Cc: Sent: Wednesday, August 21, 2002 5:11 PM Subject: Re: Firewall Help plz > On Thu, 2002-08-22 at 00:35, RDWestSr@hotpop wrote: > > hi guys, > > i need a little input on freebsd firewalls-- > > check my ideas out and maybe advise me the best route and point me to some > > detailed links etc... > > a friend of mine asked me to help him get his small business online. > > i'm looking for some ideas on this. my questions... > > > > 10 computers > > - 1 server > > -9 clients > > > > ok, all customer info, orders, etc is kept on the server... he has 9 > > employees that log into the server from their client pc to update and change > > information etc... > > > > now his employees want on the net to surf, mail, download mp3's etc... > > he's getting a commercial cable account > > > > what is the best secure way to build the firewall or wall(s) for the > > network.... > > hummm > > the server needs a big wall :) > > here's my thinking > > > > the server has to be secure enough that if and when a client gets hacked > > that they can't get into the server and screw it up... > > > > so... > > NET-> > > FREEBSD _FIREWALL/GATEWAY (nic cards to 2 networks) > > LAN_#1(all 9 clients) > > LAN_#2(the server) > > ------------------- or > > NET-> > > FREEBSD _FIREWALL/GATEWAY-#1-> > > #1-LOCAL_AREA_NETWORK-> > > FREEBSD _FIREWALL/GATEWAY-#2-> > > THE_SERVER > > -------------------- > > here's my main question-- > > can freebsd be setup by MAC ID access ????? > > my ideas are to route access for the clients on ports 20,21,25,53,80,110 to > > access net while nic #2 of LAN#2 is setup where only the 9 MAC IDs of the > > LAN#1 can access the server... > > > > thats my way of thinking... i was thinking a double firewall would be > > more secure than a single firewall box... > > > > tx in advance guys... > > i'm just trying to save him a ton of money here while making it safe for his > > employees to get on the net... > > > > RDWestSr > > My guess is you are going to have to pay to get that sort of support. > I'd typically charge anywhere from $300-$500 on the side to set > something like that up on a Saturday. Get a copy of ORA's building > Internet Firewalls, and take a look at the handbook and man page for > ipfw. > > Josh > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message