From owner-freebsd-questions@FreeBSD.ORG Tue Jan 10 22:01:54 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6EE5716A41F for ; Tue, 10 Jan 2006 22:01:54 +0000 (GMT) (envelope-from dan@ferrarishields.com) Received: from mail.ferrarishields.com (mail.ferrarishields.com [216.82.146.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2223F43D45 for ; Tue, 10 Jan 2006 22:01:54 +0000 (GMT) (envelope-from dan@ferrarishields.com) Received: from dan (dan [10.70.153.5]) by mail.ferrarishields.com (Postfix) with SMTP id D858D7301A; Tue, 10 Jan 2006 14:01:51 -0800 (PST) Message-ID: <030a01c61631$811fa0a0$0599460a@dan> From: "Dan O'Connor" To: "Brian Bobowski" , "FreeBSD User Questions List" References: <43BC097C.4000401@gmail.com> <43C1F14E.3010808@gmail.com> Date: Tue, 10 Jan 2006 14:02:10 -0800 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="iso-8859-1"; reply-type=response Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.2670 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2670 Cc: Subject: Re: Setting up a FreeBSD gateway (more detail) and IPFW X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Jan 2006 22:01:54 -0000 > Thanks to those who replied to my previous call for help. Now I think > it's time I actually provide some relevant detail. > Ideally, I'd like to be able to leave my workstation's network > settings alone, and set up DHCP; however, a look over the ports > suggests that's far more trouble than it's worth for a single client > that doesn't really need such flexibility. > > I don't have any servers running on my workstation, so I've no need to > allow traffic from the 'net to get through the firewall to the > LAN(servers on the gateway itself are another matter). However, the > firewall is still my biggest challenge. A DHCP server *looks* challenging to set up...but it's really a snap! See my example at http://www.mostgraveconcern.com/freebsd/sheet.cgi?dhcp Also, check out my firewall setup: http://www.mostgraveconcern.com/freebsd/sheet.cgi?ipfw I don't use named, I just allow outbound DNS lookups through the firewall. Also, my DHCP server points clients at my ISP's DNS servers... Hope this helps, ~Dan -- FreeBSD Cheat Sheets http://www.mostgraveconcern.com/freebsd/