Date: Sat, 10 Oct 1998 13:56:17 +0930 From: Leigh Hart <hart@dotat.com> To: spork <spork@super-g.com> Cc: freebsd-net@FreeBSD.ORG Subject: Re: IPFW, IPfilter, dummynet, et friends Message-ID: <199810100426.NAA27461@at.dotat.com> In-Reply-To: Your message of "Sat, 10 Oct 1998 13:45:10 %2B0930." <199810100415.NAA27389@at.dotat.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Ack, forgot the one bit of magic required to make this work :-) Leigh Hart <hart@dotat.com> wrote: > > ! > ip nat inside source list allowed_hosts interface serial0 overload > ip nat inside source list allowed_hosts interface serial1 overload > ! > int Ethernet0 > description local lan segment > ip address 172.16.1.1 255.255.255.0 ip policy route-map POLICY > ip nat inside > ! > int Serial0 > description frame relay link to the 'net > ip address 192.168.1.1 255.255.255.252 > ip nat outside > ! > int Serial1 > description modem link to the 'net > ip address 10.1.1.1 255.255.255.252 > ip nat outside > ! > ip route 0.0.0.0 0.0.0.0 10.1.1.2 ! default via the modem > ! > route-map POLICY permit 10 ! policy via the frame relay > match ip address telnet_and_ssh > set ip next-hop 192.168.1.2 ! alternatively, set interface s0 > ! ! might work, not sure which is better. > ! > ip access-list extended allowed_hosts > permit 172.16.1.0 0.0.0.255 > ! > ip access-list extended telnet_and_ssh > permit tcp any any range 22 23 > ! Cheers Leigh -- | "By the time they had diminished | Leigh Hart, <hart@dotat.com> | | from 50 to 8, the other dwarves | Dotat Communications Pty Ltd | | began to suspect 'Hungry' ..." | GPO Box 487 Adelaide SA 5001 | | -- Gary Larson, "The Far Side" | http://www.dotat.com/hart/ | To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199810100426.NAA27461>