Date: Mon, 11 Dec 2000 14:51:57 +1300 From: Jonathan Chen <jonathan.chen@itouch.co.nz> To: Sean Peck <speck@newsindex.com> Cc: "Crist J. Clark" <cjclark@reflexnet.net>, freebsd-questions@FreeBSD.ORG Subject: Re: Configuring Gateway/NAT on Freebsd Message-ID: <20001211145157.A15455@jonc.itouch> In-Reply-To: <Pine.BSF.4.10.10012101719370.5938-100000@www.newsindex.com>; from speck@newsindex.com on Sun, Dec 10, 2000 at 05:24:50PM -0800 References: <20001210150314.P96105@149.211.6.64.reflexcom.com> <Pine.BSF.4.10.10012101719370.5938-100000@www.newsindex.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Dec 10, 2000 at 05:24:50PM -0800, Sean Peck wrote:
[...]
> I have the NIC listening to both IP's at least in theory, 172.16.0.1 and
> my public space IP... I assume that it must be listening there as well...
> perhaps incorrectly.
For a firewall, you need to have 2 NICs. One for your i/f to the 'Net,
and one for your i/f to your internal network. Think of a stream of
information that must pass in thru' your f/w rules before it can go out
thru' the second i/f to your internal network.
If your i/f to the 'Net is a dial-up ppp link, you set up ppp to
handle nat with a -nat option, instead of using 'natd'.
--
Jonathan Chen <jonathan.chen@itouch.co.nz>
----------------------------------------------------------------------
"A person should be able to do a small bit of everything,
specialisation is for insects"
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001211145157.A15455>