From owner-freebsd-questions Tue Jan 25 16:16:38 2000 Delivered-To: freebsd-questions@freebsd.org Received: from pogo.caustic.org (pogo.caustic.org [208.44.193.69]) by hub.freebsd.org (Postfix) with ESMTP id D7DC615318 for ; Tue, 25 Jan 2000 16:16:35 -0800 (PST) (envelope-from jan@caustic.org) Received: from localhost (jan@localhost) by pogo.caustic.org (8.9.3/ignatz) with ESMTP id QAA03210; Tue, 25 Jan 2000 16:17:10 -0800 (PST) Date: Tue, 25 Jan 2000 16:17:10 -0800 (PST) From: "f.johan.beisser" To: William Woods Cc: freebsd-questions@FreeBSD.ORG, Daniel Brownstone Subject: Re: DSL natd rules.... In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG my bad, i misstyped. i intended to say "since i think identd is useless, and more than a little bit pointless" oosp. -- jan On Tue, 25 Jan 2000, William Woods wrote: > I just a question, since yu think natd is useless, how do YOU do nat then? > > On 25-Jan-00 f.johan.beisser wrote: > > > > yes, you'll have to forward port 113 to the machine (auth).. the other > > option is to make sure you have identd accessable from the natd machine. > > > > since i think natd is useless, and more than a little bit pointless, i'd > > suggest going to find one of the simple identds off of freshmeat.net > > > > -- jan > > > > On Tue, 25 Jan 2000, Daniel Brownstone wrote: > > > >> > >> This is only tangentially related, but I'm using natd on my box, and now > >> my Win98 machine can't seem to connect, for example, to IRC, because most > >> servers won't recognize the identd function on mirc. Does anyone know > >> what I'm talking about? Any solutions? > >> > >> > >> On Tue, 25 Jan 2000, f.johan.beisser wrote: > >> > >> > > >> > i'd actually use the NAT box as a firewall, since it can do a bit more > >> > than cisco's IOS can.. > >> > > >> > on the other hand, depending on how much protection you really want or > >> > need, you might do the packetfiltering from the cisco anyway. > >> > > >> > IPFW or IPFilter are both really powerful tools in controlling the flow of > >> > data from one network to the other. you should check both out pretty > >> > extensivly. i've recently switched to IPFilter (it's slightly more > >> > powerful, IMHO). > >> > > >> > anyhow, that's my two cents. > >> > > >> > -- jan > >> > > >> > On Tue, 25 Jan 2000, William Woods wrote: > >> > > >> > > > so, questions: > >> > > > > >> > > > 1 - is the cisco going to firewall, or do you want the freebsd box > >> > > > to do > >> > > > it? > >> > > > >> > > The cisco will be a REAL BASIC firewall, blocking all smb from the > >> > > outside so I > >> > > can run samba inside. > >> > > > >> > > > 2 - do you need to access the network from anywhere else? > >> > > > >> > > Nope > >> > > > >> > > I will re-read that page on natd also, thanks > >> > > >> > > >> > > >> > +-----// f. johan beisser //------------------------------+ > >> > email: jan[at]caustic.org web: http://www.caustic.org/~jan > >> > "knowledge is power. power corrupts. study hard, be evil." > >> > > >> > > >> > > >> > To Unsubscribe: send mail to majordomo@FreeBSD.org > >> > with "unsubscribe freebsd-questions" in the body of the message > >> > > >> > >> ------------------------------------------------------------ > >> Daniel R. Brownstone jkirk@100acre.com > >> Home: (650) 631-3983 Cell: (650) 906-5310 > >> ** THIS E-MAIL IS PROPRIETARY ** > >> > > > > +-----// f. johan beisser //------------------------------+ > > email: jan[at]caustic.org web: http://www.caustic.org/~jan > > "knowledge is power. power corrupts. study hard, be evil." > > ---------------------------------- > E-Mail: William Woods > Date: 25-Jan-00 > Time: 16:05:43 > > This message was sent by XFMail > ---------------------------------- > +-----// f. johan beisser //------------------------------+ email: jan[at]caustic.org web: http://www.caustic.org/~jan "knowledge is power. power corrupts. study hard, be evil." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message