From owner-freebsd-isp  Sat Aug  2 06:10:36 1997
Return-Path: <owner-freebsd-isp>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id GAA22767
          for isp-outgoing; Sat, 2 Aug 1997 06:10:36 -0700 (PDT)
Received: from relay2.mail.uk.psi.net (sys1.london.uk.psi.net [154.32.108.2])
          by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA22751
          for <freebsd-isp@FreeBSD.ORG>; Sat, 2 Aug 1997 06:10:32 -0700 (PDT)
Received: from sys4.cambridge.uk.psi.net (sys4.cambridge.uk.psi.net [154.32.106.14])
	by relay2.mail.uk.psi.net (8.8.4/) with ESMTP
	id OAA22899; Sat, 2 Aug 1997 14:10:29 +0100 (BST)
Received: by sys4.cambridge.uk.psi.net (8.7.5/SMI-5.5-UKPSINet)
	id OAA10810; Sat, 2 Aug 1997 14:06:18 +0100 (BST)
Received: from infodev.nadt.org.uk (infodev.nadt.org.uk [172.16.99.205]) by charlie.nadt.org.uk (8.8.5/8.6.12) with SMTP id NAA04173; Sat, 2 Aug 1997 13:29:40 +0100 (BST)
Message-Id: <3.0.2.32.19970802132940.006eb14c@wrcmail>
X-Sender: robmel@wrcmail
X-Mailer: QUALCOMM Windows Eudora Light Version 3.0.2 (32)
Date: Sat, 02 Aug 1997 13:29:40 +0100
To: Dale Phillips <dphillip@tabfs.com>
From: Robin Melville <robmel@nadt.org.uk>
Subject: Re: connecting a lan to internet
Cc: freebsd-isp@FreeBSD.ORG
In-Reply-To: <3.0.32.19970730065134.007dd600@svr.tabfs.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-isp@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

At 06:51 30/07/97 -0700, you wrote:
>Greetings,
>
>I need a pointer or two. I think this is the best place to start.
>we have an internel network with web servers and such. 
>
>I would like to connect all this up to the internet but 
>allow full outgoing and incoming for verified users of
>our existing systems system only. 

You'll need to do some hefty reading on this before you start. Get a good
book on internet security/firewalls. Examples are:

Garfinkel S., & Spafford G., "Practical UNIX & Internet Security", O'Reilly
& Associates Inc, 1996 [ISBN 1-56592-148-8]

Chapman D.B., & Zwicky E.D., "Building Internet Firewalls", O'Reilly &
Associates Inc, 1995 [ISBN 1-56592-124-0]

Then you can start to apply it to FreeBSD. In particular, have a look at
the IPFW stuff.

>We currently don't have
>news running. But we do have uucp for email delivery. Can 
>one run uucp email over a leased line? 

You probably won't need to do this. UUCP is great for standalone setups (we
use it ourselves), but it's pretty redundant once you have a leased line.
You'll probably want to use sendmail or one of the other MTA's for this.

Good luck!

Robin.

--------------------------------------------------------
Robin Melville, Addiction & Forensic Information Service
Nottingham Alcohol & Drug Team (Extn. 49178)
Vox: +44 (0)115 952 9478  Fax: +44 (0)115 952 9421 
Email: robmel@nadt.org.uk
WWW:   http://www.innotts.co.uk/nadt/
---------------------------------------------------------