From owner-FreeBSD-net-jp@jp.freebsd.org  Tue Jul  3 22:24:42 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id WAA71411;
	Tue, 3 Jul 2001 22:24:42 +0900 (JST)
	(envelope-from owner-FreeBSD-net-jp@jp.FreeBSD.org)
Received: from mx.yaya.forks.co.jp (51.96.149.210.economy.2iij.net [210.149.96.51])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id WAA71405
	for <FreeBSD-net-jp@jp.freebsd.org>; Tue, 3 Jul 2001 22:24:41 +0900 (JST)
	(envelope-from marina@yaya.forks.co.jp)
Received: by mx.yaya.forks.co.jp (8.9.3/3.7W-2.8compat.base) id WAA95604; Tue, 3 Jul 2001 22:24:31 +0900 (JST)
Date: Tue, 03 Jul 2001 22:24:40 +0900
From: Masanori Takeishi <marina@yaya.forks.co.jp>
To: FreeBSD-net-jp@jp.freebsd.org
In-Reply-To: <87elry9nw4.wl@miffy.taihei-dengyo.co.jp>
References: <87elry9nw4.wl@miffy.taihei-dengyo.co.jp>
Message-Id: <20010703222133.8768.MARINA@yaya.forks.co.jp>
MIME-Version: 1.0
Content-Type: text/plain; charset="ISO-2022-JP"
Content-Transfer-Encoding: 7bit
X-Mailer: Becky! ver. 2.00.01
Reply-To: FreeBSD-net-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+010328
X-Sequence: FreeBSD-net-jp 3195
Subject: [FreeBSD-net-jp 3195] Re: ipfw + nat
 =?ISO-2022-JP?B?GyRCJEckTiVVJSElJCUiJSYlKSE8JWslayE8JWsbKEI=?=
 =?ISO-2022-JP?B?GyRCJE49cSQtSn0bKEI=?= 
Errors-To: owner-FreeBSD-net-jp@jp.freebsd.org
Sender: owner-FreeBSD-net-jp@jp.freebsd.org
X-Originator: marina@yaya.forks.co.jp

$BIp@P$G$9!#(B

$B:G8e$K(B
/sbin/ipfw add 60000 deny log ip from any to any
$B$J@_Dj$rF~$l$F!"$O$8$$$?%Q%1%C%H$r8+$F$_$k$N$,$h$m$7$$$+$H(B
$B$=$&$9$l$P!"=q$$$?%k!<%k$H>H9g$G$-$^$9!#(B
ipfw show $B$G3NG'$7$J$,$i$d$l$P!"L\E*$J@_Dj$,=PMh$k$s$G$O!)(B


On Tue, 03 Jul 2001 21:51:23 +0900
Masaki Mizutani <m-saki@rr.iij4u.or.jp> wrote:

> $B$_$:$?$K$H?=$7$^$9!#(B
> 
> lnc $B$H(B sis $B$,;I$5$C$?(B COMPAQ DESKPRO $B$G(B FreeBSD 4.3-STABLE
> $B$r;H$C$F$$$^$9!#(B
> 
> $B$G!"$3$l$r(BNAT$B%k!<%?$K$7$h$&$H$7$F$$$^$9!#(B
> $B$$$m$s$J%I%-%e%a%s%H$r;2>H$7$F(B pass all from any to any $B$J(B
> $BF0:n$O=PMh$k$h$&$K$J$j$^$7$?!#(B($B$C$F$$$&Dx$N$b$N$8$c$"$j$^$;$s$,(B^^;)
> $B$G$b!"%^%K%e%"%k(B natd(8) $B$K$"$k$h$&$J(B
> 	$B?.Mj$9$k%[%9%H$X(B/$B$+$i$N%H%i%U%#%C%/$N$_$r5v2D$9$k(B
> 	$B%U%!%$%"%&%)!<%k%k!<%k$r:n@.$9$k$3$H$r6/$/4+$a$^$9!#(B
> $B$N$h$&$K%k!<%k$rDI2C$7$h$&$H$9$k$H!"$&$^$/F0$+$J$/$J$j$^$9!#(B
> $B$*$=$i$/!";d$NF,$NCf$G$N(B $B%$%s%?!<%U%'%$%9(B, ipfw, natd $B$N(B
> $B0LCVIU$1$,$h$m$7$/$J$$$H;W$&$N$G$9$,(B...$B!#(B
> 
> $B!&%W%i%$%Y!<%H%"%I%l%9$r;OE@$K$b$C$?%Q%1%C%H$,$d$C$F$-$?(B
> $B!&@hF,$K=q$$$?!V(Bdivert natd$B!W$K$h$j;OE@$r<+J,$N30B&$N%"%I%l%9$K(B
> $B!&;OE@$,%0%m!<%P%k%"%I%l%9$K$J$C$F$b$&0lEY$d$C$F$-$?(B($B$I$3$+$i(B?)
> $B!&<!$N(B(ipfw$B$N(B)$B9T$+$i%A%'%C%/B39T(B
> 
> $B$C$F$J6q9g$K9M$($F$$$^$9!#(B
> 
> $B2>$K!"(B
> 
> oif="lnc0"
> onet="210.237.181.32"
> omask="255.255.255.248"
> oip="210.237.181.33"
> 
> iif="sis0"
> inet="192.168.1.0"
> imask="255.255.255.0"
> iip="192.168.1.1"
> 
> $B$H$7$?>l9g!"(B192.168.1.2 $B$N%^%7%s$@$130It$N(Bsmtp$B%5!<%P$K(B
> $B%a!<%k$rEj$2$i$l$k$h$&$K$9$k$K$O(B
> 
> /sbin/ipfw add divert natd all from any to any via ${oif}
> 
> /sbin/ipfw add pass tcp from ${oip} to any 25 via ${iif}
> /sbin/ipfw add pass tcp from any 25 to ${oip} via ${oif} established
> 
> $B$H$+=q$$$F$_$?$N$G$9$,!"$@$a$G$7$?!#(B
> 
> $B$=$l$>$l$,$I$N$h$&$J0LCVIU$1$G!"$I$N$h$&$KHf3S$5$l$F(B
> $B=hM}$5$l$k$N$G$7$g$&$+!#(B
> 
> -- 
> $B?eC+!!@5<y(B / m-saki@rr.iij4u.or.jp
> PGP Fingerprint: E551 12B2 CF6B 50EA BD5C  CFD1 FF41 0F6E 595C 92CE
> PGP Public Key : http://www.rr.iij4u.or.jp/%7Em-saki/mizutani_gpg.asc

-----------------------------------------------------
Masanori Takeishi,  E-Mail: marina@yaya.forks.co.jp

