From owner-freebsd-questions Mon Feb 14 5:43:46 2000 Delivered-To: freebsd-questions@freebsd.org Received: from arf.bussert.COM (arf.bussert.com [209.183.67.130]) by builder.freebsd.org (Postfix) with ESMTP id 921DD3F09 for ; Mon, 14 Feb 2000 05:43:42 -0800 (PST) Received: from arf (53.bussert.com [10.10.10.53]) by arf.bussert.COM (8.9.3/8.9.3) with SMTP id IAA00488; Mon, 14 Feb 2000 08:48:40 -0500 (EST) (envelope-from jonkman@bussert.com) Message-ID: <00b501bf76f1$8a0bfaa0$350a0a0a@bussert.com.Bussert> From: "Matthew Jonkman" To: "Steve Hovey" Cc: References: Subject: Re: Routed and public IPs Date: Mon, 14 Feb 2000 08:43:55 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6600 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG AHA! That could be it. I didn't think to alter my firewall rules. Duh. Its like its a monday or something. Will try that shortly. Thanks. ========================================= Matthew Jonkman ----- Original Message ----- From: "Steve Hovey" To: "Matthew Jonkman" Sent: Monday, February 14, 2000 8:25 AM Subject: Re: Routed and public IPs Ok - so you set the filtering on the bsd machine to allow for the ones you want accessible, blocked for the rest, and the route is done in the router. On Sun, 13 Feb 2000, Matthew Jonkman wrote: > There is a router before the bsd machine. > > Thanks > > ----- Original Message ----- > From: Steve Hovey > To: Matthew Jonkman > Cc: > Sent: Sunday, February 13, 2000 8:46 AM > Subject: Re: Routed and public IPs > > > > > > I believe routed just handles rip - if these public addresses need global > > routing you need something that does bgp - To passwd packets to just > > certain addresses and no others, you do a permit rule for the ones to > > pass, deny for all others. > > > > Is freebsd your router? Or a machine inside from your router, acting as a > > router to a subset of machines? > > > > On Sun, 13 Feb 2000, Matthew Jonkman wrote: > > > > > I have myself very confused here. > > > I am running a firewall but there is a need to have public IPs behind > the > > > firewall that are accessible from the outside. By my feeble figuring if > I > > > run routed -s it will build a table and should make them visible. Am I > right > > > there? > > > > > > Is it possible to firewall public addresses behind a bsd machine? > > > > > > Is NAT interfering with route? > > > > > > ========================= > > > Matthew Jonkman > > > > > > > > > > > > This system will self-destruct in five minutes. > > > > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-questions" in the body of the message > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message