From owner-freebsd-questions Mon Aug 28 8:38:18 2000 Delivered-To: freebsd-questions@freebsd.org Received: from siafu.iconnect.co.ke (upagraha.iconnect.co.ke [209.198.248.2]) by hub.freebsd.org (Postfix) with ESMTP id E7F1737B422 for ; Mon, 28 Aug 2000 08:38:10 -0700 (PDT) Received: from vedette by siafu.iconnect.co.ke with local (Exim 2.12 #1) id 13TQy3-0004Mm-00 for freebsd-questions@FreeBSD.ORG; Mon, 28 Aug 2000 18:36:59 +0300 Date: Mon, 28 Aug 2000 18:36:59 +0300 From: Odhiambo Washington To: freebsd-questions@FreeBSD.ORG Subject: Re: Firewall solutions? Message-ID: <20000828183659.G3223@siafu.iconnect.co.ke> Mail-Followup-To: freebsd-questions@FreeBSD.ORG References: <4.2.2.20000828003335.00aa2a30@bsd> <4.3.1.2.20000827102920.00ac5aa0@mail.udel.edu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.3i In-Reply-To: <4.3.1.2.20000827102920.00ac5aa0@mail.udel.edu>; from John on Sun, Aug 27, 2000 at 10:31:41AM -0400 X-Mailer: Mutt http://www.mutt.org/ X-Accept-Language: en fr X-Editor: Pico http://www.washington.edu/pine X-Location: Mombasa, Kenya, East Africa X-Uptime: 6:36PM up 7:26, 3 users, load averages: 0.23, 0.27, 0.29 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Right. Start from www.mostgraveconcern.com/freebsd Some guy referred us to it. -Wash Quoting John : [000827 17:31]: John> John>>I've been trying to get a decent firewall running here but i there always John>>seems to be something in the way, and i could do with some advice. John>> John>>I've got 2 computers (Windows and FreeBSD - each with their own real ip) John>>and a 3rd computer with no real ip (it's using 192.168.1.2 at the moment), John>>all needing to go through a cable modem, but still be firewalled and John>>networked (microsoft network - ie: shared drives/printers), and the John>>192.168.1.2 machine to be masqueraded. At first i played around with John>>subnets and managed to have all 3 computers on my switch, with the cable John>>modem coming off a second NIC in FreeBSD, but it was rather messy and John>>ruined the routing for the subnet that i was faking. John> John> John> John>This solution seems like it should work, but you don't really provide any John>details on your configuration and how it was 'messy' or how it ruined the John>routing... You might want to check out www.mostgraveconcern.com and check John>out the article on setting up a Dual-Homed machine (it's under the John>'Advanced Topics' listing on the left frame). Without setting up your FBSD John>to handle NAT (for your 192. box), and a firewall, AND to act as a gateway, John>it would seem that nothing would work right =) John> John>Hope that helps, John>John John> John> John> John>To Unsubscribe: send mail to majordomo@FreeBSD.org John>with "unsubscribe freebsd-questions" in the body of the message -- Odhiambo Washington Systems Administrator Inter-Connect Ltd. 3rd Flr The Chancery Valley Rd PO Box 39519 Nairobi Tel: 254 2 711140 Fax: 254 2 718418 As of next Thursday, UNIX will be flushed in favor of TOPS-10. Please update your programs. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message