On 6/23/05, Björn König <[EMAIL PROTECTED]> wrote:
...
> Actually you don't need ipfw or any other packet filter to set up a
> simple internet access point for clients in a LAN. This configuration
> should be enough:
>
> ppp.conf
> myisp:
>set device PPPoE:
>set log Phase IPCP CC
Peter wrote:
with my old linux box I forward all my LAN traffic coming from eth1 via
eth0 with these simple 3 lines
$IPTABLES -t nat -A POSTROUTING -o $INET_IFACE -j MASQUERADE
$IPTABLES -A FORWARD -i $LAN_IFACE -j ACCEPT
$IPTABLES -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
How
On 6/23/05, Peter <[EMAIL PROTECTED]> wrote:
> Hi,
>
> with my old linux box I forward all my LAN traffic coming from eth1 via
> eth0 with these simple 3 lines
>
> $IPTABLES -t nat -A POSTROUTING -o $INET_IFACE -j MASQUERADE
> $IPTABLES -A FORWARD -i $LAN_IFACE -j ACCEPT
> $IPTABLES -A FORWARD -m
Hi,
with my old linux box I forward all my LAN traffic coming from eth1 via
eth0 with these simple 3 lines
$IPTABLES -t nat -A POSTROUTING -o $INET_IFACE -j MASQUERADE
$IPTABLES -A FORWARD -i $LAN_IFACE -j ACCEPT
$IPTABLES -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
Howevr I mov
It's been a while but I'll see if I can help out.
On Friday, March 4, 2005, at 06:52 PM, Florian Hengstberger wrote:
Hi!
Tell me if I should post this otherwhere.
Given two network cards sis0 (external) and vr0 (internal) I'm trying
to give my girlfriend access to the web. Her ip is 192.168.0.2,
I
Hi!
Tell me if I should post this otherwhere.
Given two network cards sis0 (external) and vr0 (internal) I'm trying
to give my girlfriend access to the web. Her ip is 192.168.0.2,
I've installed natd, a proper kernel and configured my firewall,
but so far only pings from her computer to the web wo
ECTED]; [EMAIL PROTECTED]
Subject: Re: IPFW Problem
On Thu, 30 Sep 2004 22:32:16 +1000, Steven Adams <[EMAIL PROTECTED]>
wrote:
> When I add
>
> $fwcmd add allow ip from any to any established
>
> The messages go away, but when I remove it they come back, I ran a tcpdump
> it
On Thu, 30 Sep 2004 22:32:16 +1000, Steven Adams <[EMAIL PROTECTED]> wrote:
> When I add
>
> $fwcmd add allow ip from any to any established
>
> The messages go away, but when I remove it they come back, I ran a tcpdump
> it seems most of the packet just have ACK set?
If this works for you then
Home: +61 2 94274857
Fax: +61 2 94274857
Mobile +61 (0) 404 085644
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Thursday, 30 September 2004 4:33 PM
To: [EMAIL PROTECTED]
Subject: IPFW Problem
Hi,
I am tryin to setup my Firewall on my server, so far i have the
Hi,
I am tryin to setup my Firewall on my server, so far i have the following.
===
oif=bge0
fwcmd=ipfw
$fwcmd -f flush
$fwcmd add check-state
$fwcmd add allow ip from any to any via lo0
$fwcmd add deny ip from any to 127.0.0.0/8
$fwcmd a
On Sat, 21 Feb 2004 15:51:16 +0300
"Marwan Sultan" <[EMAIL PROTECTED]> wrote:
> Hello everyone,
>
> Thank you for the answers,
> True, I didnot use the full path for ipfw in my script.
> when I added to the script /sbin/ipfw RULE_HERE everything works
> great. I thought it will regonize the
Hello everyone,
Thank you for the answers,
True, I didnot use the full path for ipfw in my script.
when I added to the script /sbin/ipfw RULE_HERE everything works great.
I thought it will regonize the command ipfw by it self. well it didnot :)
Thank you again marty, nathan, Ion and all thi
On Fri, Feb 20, 2004 at 11:33:45PM +0300, Marwan Sultan wrote:
> Hello bsd,
>
> I have FreeBSD 4.8R, NATd, ipfw enabled.
>
> I want to add a rule to ipfw which activate from 3AM to 3PM : says:
> ipfw 05000 add deny all from 192.168.1.21 to any
>
> So I created a shell script lets say den
At 03:33 PM 2/20/2004, Marwan Sultan wrote:
I want to add a rule to ipfw which activate from 3AM to 3PM : says:
ipfw 05000 add deny all from 192.168.1.21 to any
How to run the scripts? thro crontab I fixed my crontab to
0 3 * * * /path/deny.sh
0 15 * * * /path/enable.sh
Marwan, are these
On Fri, 20 Feb 2004 23:33:45 +0300
"Marwan Sultan" <[EMAIL PROTECTED]> wrote:
> Hello bsd,
>
> I have FreeBSD 4.8R, NATd, ipfw enabled.
>
> I want to add a rule to ipfw which activate from 3AM to 3PM : says:
> ipfw 05000 add deny all from 192.168.1.21 to any
The following entries in my cr
Hello bsd,
I have FreeBSD 4.8R, NATd, ipfw enabled.
I want to add a rule to ipfw which activate from 3AM to 3PM : says:
ipfw 05000 add deny all from 192.168.1.21 to any
So I created a shell script lets say deny.sh says the above rule and
I chmod +x the script.
Second shell script
On Wed, Oct 09, 2002 at 06:34:43PM -0400, 2005 - Chill, Samuel Thomas wrote:
>Date: Wed, 9 Oct 2002 18:34:43 -0400
>From: "2005 - Chill, Samuel Thomas" <[EMAIL PROTECTED]>
>To: <[EMAIL PROTECTED]>
>Subject: Re: Puzzling Simple NATD and IPFW Problem
>
>Af
- Chill, Samuel Thomas" <[EMAIL PROTECTED]>
>To: <[EMAIL PROTECTED]>
>Subject: Re: Puzzling Simple NATD and IPFW Problem
>
>Here is the info. Hope it helps solve this problem.
># ifconfig -a
>rl0: flags=8843 mtu 1500
>inet6 fe80::201:aff:fe10:815b%rl0 p
On Wed, Oct 09, 2002 at 12:00:25AM -0400, 2005 - Chill, Samuel Thomas wrote:
>Date: Wed, 9 Oct 2002 00:00:25 -0400
>From: "2005 - Chill, Samuel Thomas" <[EMAIL PROTECTED]>
>To: <[EMAIL PROTECTED]>
>Subject: Re: Puzzling Simple NATD and IPFW Problem
>
>He
assigned, use the command pfctl -sr
6.3 - NAT
Note: Packet Filter is the filtering system in If you
are looking for the IPF/IPNAT FAQ for before, click
here.
6.3.1 NAT Introduction
Based on RFC 1631, NAT provides an easy way to map
internal networks to a single routeable ("real")
internet
Here is the info. Hope it helps solve this problem.
# ifconfig -a
rl0: flags=8843 mtu 1500
inet6 fe80::201:aff:fe10:815b%rl0 prefixlen 64 scopeid 0x1
inet 68.59.237.192 netmask 0xf800 broadcast 68.59.239.255
ether 00:01:0a:10:81:5b
media: Ethernet autoselect (10
On Tue, 8 Oct 2002, 2005 - Chill, Samuel Thomas wrote:
> I have ipfirewall, ipdivert, and dummynet all compiled into my kernel. I
> am able to run run natd and to specify rules with ipfw, i can also ping
> my external interface. My internal network card (rl1) is 10.0.0.1 and my
> lan clients are
I have ipfirewall, ipdivert, and dummynet all compiled into my kernel. I am able to
run run natd and to specify rules with ipfw, i can also ping my external interface. My
internal network card (rl1) is 10.0.0.1 and my lan clients are running on 10.0.0.x. I
can ping everything, the network is se
23 matches
Mail list logo
