From owner-freebsd-questions@FreeBSD.ORG Mon Feb 2 04:57:42 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8EF6116A4CE for ; Mon, 2 Feb 2004 04:57:42 -0800 (PST) Received: from mercury.is.co.za (mercury.is.co.za [196.4.160.222]) by mx1.FreeBSD.org (Postfix) with ESMTP id C159543D62 for ; Mon, 2 Feb 2004 04:57:28 -0800 (PST) (envelope-from extech@dod.co.za) Received: from AAA-000001 (c6-pta-85.dial-up.net [196.26.132.85]) by mercury.is.co.za (Postfix) with ESMTP id 7766EBD0D1; Mon, 2 Feb 2004 14:57:02 +0200 (SAST) Message-ID: <200402021456330904.014C3158@smtp.tridan.co.za> In-Reply-To: <200402022344.36084.dwamenae@gco.apana.org.au> References: <200402022344.36084.dwamenae@gco.apana.org.au> X-Mailer: Calypso Version 3.30.00.00 (4) Date: Mon, 02 Feb 2004 14:56:33 +0200 From: "Extech" To: dwamenae@gco.apana.org.au Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable cc: freebsd-questions@freebsd.org Subject: Re: Which interface do I put natd and ipfw X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Feb 2004 12:57:42 -0000 Check this doc out: http://www.schlacter.net/public/FreeBSD-STABLE_and_IPFILTER.html Extech *********** REPLY SEPARATOR *********** On 2004/02/02 at 23:44 Emmanuel Dwamena wrote: >Dear friends, >I need help to set up firewall on my freebsd 5.1 box. I have built new >kernel >with ipfw enabled and is working fine. >I need to know which of the 3 interfaces do I put the natd and ipfw. >My freebsd 5.1 box has 2 nic cards. ed0 connects to LAN and ed1 connects >to >adsl modem. I use user ppp to setup the connection to the isp who assigns >dynamic ip address to the tun0 interface. I have no ip address assigned to= >ed1. I have traffc coming in through the tun0 from outside to the LAN. >Which >of the interfaces do I use to block unwanted traffic from the internet.- >ed1 >or tun0? How do I configure the tun0 interface for the firewall since I do= >not know the interface address before hand? Secondly which interface do I >place natd? >If anyone has configured adsl with dynamic ip address assigned to tun0 I >will >like to have some info about how it was configured with ipfw. >regds >ed >-- >email: dwamenae@gco.apana.org.au > >_______________________________________________ >freebsd-questions@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-questions >To unsubscribe, send any mail to= "freebsd-questions-unsubscribe@freebsd.org"