Date: Sun, 17 Nov 2002 09:57:48 -0600 From: Felipe Gasper <fgasper@uiuc.edu> To: doc@FreeBSD.org Subject: NAT coverage in FBSD handbook Message-ID: <3DD7BC7C.4070101@uiuc.edu>
next in thread | raw e-mail | index | archive | help
To whom it may concern:
Could a section be added to the FBSD handbook's chapter on NAT that
would address the necessary rules to add to a custom ipfw ruleset? Right
now the only instructions given tell the user to leave his/her firewall
wide open, which doesn't strike me as the best setup as far as security.
Netfiler.org has nice documentation for manually adding rules to
iptables for NAT. Perhaps even just a section suggesting these rules?
deny ip from 192.168.0.0/16 to any in recv ${natd_interface}
divert 8668 ip from any to any via ${natd_interface}
allow ip from any to 192.168.0.0/16
allow ip from 192.168.0.0/16 to any
Thank you for your time.
--
------------------------
Felipe M. L. Gasper
http://fgmusic.org
Judge ideas, not people.
Love people, not ideas.
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-doc" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3DD7BC7C.4070101>