From owner-FreeBSD-net-jp@jp.freebsd.org  Fri Apr 24 18:24:38 1998
Received: by jaz.jp.freebsd.org (8.8.8+3.0Wbeta7/8.7.3) id SAA13980
	Fri, 24 Apr 1998 18:24:38 +0900 (JST)
Received: by jaz.jp.freebsd.org (8.8.8+3.0Wbeta7/8.7.3) with ESMTP id SAA13974
	for <FreeBSD-net-jp@jp.freebsd.org>; Fri, 24 Apr 1998 18:24:33 +0900 (JST)
Received: from miyuki.syscon.co.jp ([210.132.204.91])
          by in-server.syscon.co.jp (post.office MTA v1.9.3 ID# 0-13512)
          with SMTP id AAA310 for <FreeBSD-net-jp@jp.freebsd.org>;
          Fri, 24 Apr 1998 18:26:19 +0900
From: shimizu@syscon.co.jp (Hiroshi Shimizu)
To: FreeBSD NET <FreeBSD-net-jp@jp.freebsd.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-2022-JP
Content-Transfer-Encoding: 7bit
X-Mailer: Becky! ver 1.23
Date: Fri, 24 Apr 1998 18:26:19 +0900
Message-ID: <19980424092618111.AAA310@miyuki.syscon.co.jp>
Reply-To: FreeBSD-net-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute [version 2.1 (Alpha) patchlevel=24]
X-Sequence: FreeBSD-net-jp 588
Subject: [FreeBSD-net-jp 588] Firewall
Errors-To: owner-FreeBSD-net-jp@jp.freebsd.org
Sender: owner-FreeBSD-net-jp@jp.freebsd.org

$B$7$_$:$G$9!#(B

$B!!$O$8$a$FEj9F$7$^$9!#(B
$B!!=iJbE*$J<ALd$+$b$7$l$^$;$s$,!"65$($FD:$1$l$P9,$$$G$9!#(B

$B!!8=:_!"(BFreeBSD$B>e$K$*$$$F(Bfirewall$B$r9=C[$7$h$&$H$7$F$$$^$9!#(B
$B!!2?7o$+$NJI$KEv$?$C$F$7$^$C$F!"?HF0$-$G$-$^$;$s!#(B

$B!!!c(Broute$B!d(B
$B!!$H$j$"$($:!"(BNIC$B$r#3Kg:9$7$F!"(B
$B!!(Bde0 192.168.0.240/24
$B!!(Bde1 192.168.5.240/24
$B!!(Bde2 192.168.14.240/24
$B!!$H$7$F$$$^$9!#(B

$B!!(B192.168.0.240$B!!$O!"(Binsrouter$B$K7R$$$G$$$^$9!#(B
$B!!(Binsrouter$B!!(B192.168.0.1/24

$B!!(Bdefault$B$O!"(B192.168.0.1$B$G$A$c$s$HG'<1$5$l$k$N$G$9$,!"(B
$B!!$=$NB>$N(BNIC$B$N(Broute$B$,!"$a$A$c$/$A$c$G$9!#(B
$B!!A4It$N(Bhub$B$rHt$S8r$C$F$$$^$9!#(B
$B!!!t(Bipfw$B$G;_$a$l$PN.$l$J$/$O$J$j$^$9$1$I!#2r7h$K$J$C$F$$$^$;$s$h$M!#(B

$B!!(Bstatic$B$G@_Dj$7$h$&$H$7$^$7$?$,$&$^$/9T$-$^$;$s!#(B
$B!!<+J,<+?H$,(Brouter$B$G!"B>$K(Brouter$B$,L5$$>l9g$O$I$&@_Dj$9$k$N$G$7$g$&$+!)(B
$B!!(Broute add 192,168.0.0/24 192.168.0.240 1
$B!!(Broute add 192,168.5.0/24 192.168.5.240 1
$B!!(Broute add 192,168.14.0/24 192.168.14.240 1
$B!!$H$$$&@_Dj$O4V0c$$$J$s$G$7$g$&$+!)(B

$B!!$H$j$"$($:!":#$O(Brouted$B$O;_$a$F$"$j$^$9!#(B

$B!!(B<fwtk>
$B!!$^$?!"(Bproxy$B$O(Btkfw$B$r;H$*$&$H$7$F$$$k$N$G$9$,!"(Bhttp-gw$B$rDL$7$F!"30It$N(B
$B!!(Bweb$B$r;2>H$7$K9T$/;v$O=PMh$J$$$N$G$7$g$&$+!)(B
$B!!$^$?!"=PMh$k$H$9$l$P!"@_DjJ}K!$O$I$&$9$l$PNI$$$N$G$7$g$&!)(B
$B!!(Bproxy$B$N(Bport$BHV9f$H$+$bJ,$+$i$J$$$N$G!"%V%i%&%6$NLdBj$J$N$+!"(Bhttp-gw$B$N(B
$B!!LdBj$J$N$+J,$+$j$^$;$s!#(B
$B!!$A$J$_$K!"(Bhttp-gw$B$O(Bservice$B$H$+!"(Binetd.conf$B$X$NJQ99$OITMW$J$N$G$7$g$&$+!)(B
$B!!0l1~!"(Bhttp-gw$B<+BN$O5/F0$7$F$"$j$^$9!#(B
$B!!(B/usr/local/etc/http-gw -daemon http &

$B!!$b$C$H4JC1$K!"(Bftp$B!"(Btelnet$B!"(Bhttp$B$r(Bproxy$B$G$(;H$&J}K!$,$"$l$P$=$l$r(B
$B!!65$($F$/$@$5$$!#(B


$B!!(B<natd>
$B!!$^$?!"8=:_$O%F%9%H4D6-$J$N$G!"(Bglobal$B%"%I%l%9$O;H$C$F$$$^$;$s$,!"(B
$B!!(B192.168.5.xx$B$K$O(BglobalIP$B$,I3IU$1$5$l$kM=Dj$G$9!#(B
$B!!!t8=:_2TF/Cf$N(Bnetwork$B$O(BINSrouter$B>e$N(BNAT$B$GJQ49$7$F$$$^$9!#(B
$B!!!!$3$l$r!"(BFreeBSD$B>e$G9T$&0Y$K$O!"(Bnatd$B$,I,MW$@$H;W$o$l$^$9$,!"@_DjJ}K!$,!"(B
$B!!!!$h$/J,$+$j$^$;$s!#(B

$B!!(Bman faq$B$J$I$b$N$>$$$F8+$?$D$b$j$G$9$,!"J,$+$j$^$;$s$G$7$?!#(B

--
/*  ($B3t(B)$B%7%9%F%`%3%s%5%k%?%s%D(B     $B@6(B $B?e(B $B90(B     */
/*   shimizu@syscon.co.jp                       */
/*   http://w3.syscon.co.jp/shimizu/            */

