From owner-freebsd-questions  Wed May 19  1: 1:13 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from gate.volvo.se (gate.volvo.se [192.138.110.253])
	by hub.freebsd.org (Postfix) with ESMTP id 02FF414BE1
	for <freebsd-questions@FreeBSD.ORG>; Wed, 19 May 1999 01:01:03 -0700 (PDT)
	(envelope-from john@nike.volvo.se)
Received: by gate.volvo.se; id KAA12163; Wed, 19 May 1999 10:00:52 +0200 (MET DST)
Received: from unknown(131.97.124.70) by gate.volvo.se via smap (4.1)
	id xma011634; Wed, 19 May 99 09:59:33 +0200
Received: by nike.volvo.se with  (8.6.12/1.37)
	id JAA28843; Wed, 19 May 1999 09:59:32 +0200
Date: Wed, 19 May 1999 09:59:30 +0200 (MET DST)
From: John K <john@volvo.se>
To: Tony <wop@uwsnet.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: SYN FLOODS
In-Reply-To: <3741E64C.BE07B1E4@uwsnet.com>
Message-ID: <Pine.BSD/.3.91.990519094129.28004B-100000@nike.volvo.se>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Content-Transfer-Encoding: QUOTED-PRINTABLE
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


Hi,
Im quite new to FreeBSD, but
setting up a  box as a Firewall and Address Translator should work,=20
if you have the possibility. Depending in how may machines you want to=20
protect (and from what). If you have a lot of traffic going thru a=20
firewall, lots of processing power may be needed.=20

This weekend went to a LAN-Game party thing,
the organizors had totally screwed upp the network. There were about 500=20
computers but no Subnets!!!
Anyway i wanted to protect my W98 macinhe from brodcast storms and such,=20
so i put it behind a FreeBSD box, with an open firewall but running=20
natd with the=20
"-d" switch, which i think denyes incomming traffic if it isn=B4t requested=
=20
by machines on the "inside". I know this maybe far from the best option=20
but the FreeBSD machine (P120, 80Mb Ram, FBSD 3-1R) handeled sweet,
and also protected my stupid W98 box from IP spoofing.

Check the man pages for natd. it=B4s a pretty good general guide on how to=
=20
set it up.

Good Luck
/john

On Tue, 18 May 1999, Tony wrote:

> Hello,
>=20
>     I am having trouble with DOS attacks via SYN FLOODS i was told there
> was a way to prevent these with FreeBSD if there is can you please reply
> back with some information.
>=20
=20
=20














To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message