Re: rc.conf - setting interface UP without IP-address?
On 31 Srpen 2005, 11:02, Ewald Jenisch napsal(a): Hi, I'm looking for a way to set an interface UP using /etc/rc.conf without giving the interface an IP-address (i.e. neither static nor DHCP) Background: The machine in question has three Ethernet-IFs - one connects to the LAN (and has an IP-address) the other two are used for monitoring traffic via ethereal only. For security reasons I don't want to assign IP-addresses to the two ethereal-only interfaces - but I need them UP. Sure enough I can up these interfaces manually but I want them up at boot-time. I've tried with entries like e.g. ifconfig_fxp1= ifconfig_fxp1=UP in my /etc/rc.conf - none of these work. So what should I configure in /etc/rc.conf in order to get the interfaces UP? BTW - ethereal only recognizes interfaces that are in the UP state. Thanks much in advance for any clue, -ewald Hi, Ewald, I'd try this: ifconfig_fxp1=inet 0.0.0.0 netmask 255.255.255.255 It's not exactly, what you ask for, but could help. I'm not able to test it now, it's only an idea... Pavel Jordak ANF DATA, Prague ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: First time gateway/router
On 26 Srpen 2005, 17:24, Jason Morgan napsal(a): On Fri, Aug 26, 2005 at 08:03:48AM -0700, Derrill Guilbert wrote: Is there a walkthrough or something online to teach me how to make a freebsd box into a gateway/firewall? I've not ever run a FreeBSD box that wasn't already behind some other kind of firewall, and don't want to screw it up. The Handbook is your friend :) Gateway: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-routing.html Firewalls (I use IPFW, but I hear PF rocks): http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls.html Hi, friends, my personally experience: I don't think, IPFW is bad - it is very good, mature, strong..., but: I really enjoyed, when the OpenBSD's PF has been integrated into 5.x. I find the PF much simplier for a newbie (like I was too the time, I tried to configure my first firewall on FreeBSD - done with IPFW on 4.x, since then all others with PF on 5.x ;-) The OpenBSD PF documentation at http://openbsd.org/faq/pf/index.html is excellent, gives advices and examplas and fits for FreeBSD as well. Pavel Jordak ANF DATA, Prague. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NAT server
On 22 Srpen 2005, 15:28, gary masigon napsal(a): Hi, i need help to setup my freebsd as a NAT server, i cannot ping the external gateway from the client side of my FreeBSD server but i can ping the FreeBSD server. I followed all the instructions in the hand book but i cannot get the client side to connect to any www. freebsd server can ping the clients and the gateway, i am using a private ip address of 192.168.x.x in my external LANcard because i am behind a router and 10.0.0.0 in my int. it is also okay to edit the kernel instead of recompilig it to make IPFW works. tnx Hi, Gary, I absolutely don't want start any flame war about ipfw, pf etc. I would only like to tell you about my private experience: For times I tried to manage my various NAT/firewall/router setups with ipfw (it worked nearly every time but I was newer really sure that I did know, what I had done ;-|. Then, after OpenBSD's pf got to be adapted for FreeBSD standard kernel, it was all clear for me. There is an excelent doc about pf, which answers all questions and gives some good examples: http://www.openbsd.org/faq/pf/index.html It is written by OpenBSD folks for OpenBSD but fits for FreeBSD without changes. Good luck, Pavel Jordak. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: about VPN solution
On 9 Srpen 2005, 17:16, Panagiotis Christias napsal(a): On 8/9/05, Glenn Dawson [EMAIL PROTECTED] wrote: At 03:15 AM 8/9/2005, vladone wrote: Hi! I have an private network, that acces the internet via an freebsd gateway. I want to buil some authentication for my users, to prevent ilegal connections. When an user want to connect to my gateway (to acces the internet), require to enter user and password. My questions is: What solution, is best for this? m0n0wall should be able to do what you want, and it's based on FreeBSD. http://m0n0.ch/wall/ -Glenn You could try openvpn (http://openvpn.net/) too. It can run as an extra service on your freebsd box and provide ssl based vpn access using ssl certificates for authentication. Panagiotis Hi, vladone, if I understand well your issue (to authenticate the inner users), I think authpf(8) could be probably your friend. Pavel. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
