From owner-freebsd-security  Wed Oct 25  9:57:23 2000
Delivered-To: freebsd-security@freebsd.org
Received: from obelix.rby.hk-r.se (obelix-b.rby.hk-r.se [194.47.132.4])
	by hub.freebsd.org (Postfix) with ESMTP id 115B537B479
	for <freebsd-security@freebsd.org>; Wed, 25 Oct 2000 09:57:19 -0700 (PDT)
Received: from orc.rby.hk-r.se (orc [194.47.134.179])
	by obelix.rby.hk-r.se (8.10.2/8.10.2) with ESMTP id e9PGvgK08368
	for <freebsd-security@freebsd.org>; Wed, 25 Oct 2000 18:57:42 +0200 (MEST)
Received: from localhost (t98pth@localhost)
	by orc.rby.hk-r.se (8.10.2/8.10.2) with ESMTP id e9PGvGM20197
	for <freebsd-security@freebsd.org>; Wed, 25 Oct 2000 18:57:16 +0200 (MET DST)
Date: Wed, 25 Oct 2000 18:57:16 +0200 (MET DST)
From: =?ISO-8859-1?Q?P=E4r_Thoren?= <t98pth@student.hk-r.se>
To: freebsd-security@freebsd.org
Subject: Firewall
Message-ID: <Pine.GSO.4.21.0010251834490.20165-100000@orc.rby.hk-r.se>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


Hi!

I want to protect a network with a firewall. The network is 
xx.xx.xx.0 and has a gateway at xx.xx.xx.1
dns servers are xx.xx.xx.2 and xx.xx.xx.3

How can I protect the network with a fbsd firewall? Do I use
bridge/firewall or do I set fbsd as a router/firewall "behind" the gateway
xx.xx.xx.1 ?





 Big Bad Internet
      |
   ___|__
  |      | 
  |  gw  |
  |______|
      |
   ___|__
  |      | Acting as bridge? router? with ipfw
  | fbsd |
  |______| 
      |
 _____|_____
|           | Network including the dns servers
|  .2-.255  |
|___________|




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message