From owner-freebsd-questions Sun Aug 27 7:32:11 2000 Delivered-To: freebsd-questions@freebsd.org Received: from wondermutt.net (host75-157.student.udel.edu [128.175.75.157]) by hub.freebsd.org (Postfix) with ESMTP id 35E8A37B43C for ; Sun, 27 Aug 2000 07:32:01 -0700 (PDT) Received: from morgaine.udel.edu (morgaine.wondermutt.net [192.168.1.2]) by wondermutt.net (8.9.3/8.9.3) with ESMTP id KAA89132; Sun, 27 Aug 2000 10:32:39 -0400 (EDT) (envelope-from papalia@udel.edu) Message-Id: <4.3.1.2.20000827102920.00ac5aa0@mail.udel.edu> X-Sender: papalia@mail.udel.edu X-Mailer: QUALCOMM Windows Eudora Version 4.3.1 Date: Sun, 27 Aug 2000 10:31:41 -0400 To: Chris Pauly , freebsd-questions@FreeBSD.ORG From: John Subject: Re: Firewall solutions? In-Reply-To: <4.2.2.20000828003335.00aa2a30@bsd> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG >I've been trying to get a decent firewall running here but i there always >seems to be something in the way, and i could do with some advice. > >I've got 2 computers (Windows and FreeBSD - each with their own real ip) >and a 3rd computer with no real ip (it's using 192.168.1.2 at the moment), >all needing to go through a cable modem, but still be firewalled and >networked (microsoft network - ie: shared drives/printers), and the >192.168.1.2 machine to be masqueraded. At first i played around with >subnets and managed to have all 3 computers on my switch, with the cable >modem coming off a second NIC in FreeBSD, but it was rather messy and >ruined the routing for the subnet that i was faking. This solution seems like it should work, but you don't really provide any details on your configuration and how it was 'messy' or how it ruined the routing... You might want to check out www.mostgraveconcern.com and check out the article on setting up a Dual-Homed machine (it's under the 'Advanced Topics' listing on the left frame). Without setting up your FBSD to handle NAT (for your 192. box), and a firewall, AND to act as a gateway, it would seem that nothing would work right =) Hope that helps, John To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message