From owner-doc-jp@jp.freebsd.org  Tue Jul 21 02:39:35 1998
Received: (from daemon@localhost)
	by jaz.jp.freebsd.org (8.8.8+3.0Wbeta13/8.7.3) id CAA24455;
	Tue, 21 Jul 1998 02:39:35 +0900 (JST)
	(envelope-from owner-doc-jp@jp.FreeBSD.org)
Received: from tasogare.imasy.or.jp (root@tasogare.imasy.or.jp [202.227.24.5])
	by jaz.jp.freebsd.org (8.8.8+3.0Wbeta13/8.7.3) with ESMTP id CAA24450
	for <doc-jp@jp.freebsd.org>; Tue, 21 Jul 1998 02:39:33 +0900 (JST)
	(envelope-from iwasaki@jp.FreeBSD.org)
Received: from localhost (ppp29.imasy.or.jp [202.227.24.39])
	by tasogare.imasy.or.jp (8.8.8+2.7Wbeta7/3.6W-tasogare) with ESMTP id CAA15808;
	Tue, 21 Jul 1998 02:39:29 +0900 (JST)
	(envelope-from iwasaki@jp.FreeBSD.org)
Message-Id: <199807201739.CAA15808@tasogare.imasy.or.jp>
To: doc-jp@jp.freebsd.org, mrt@da.airnet.ne.jp
In-Reply-To: Your message of "21 Jul 1998 02:36:22 +0900"
	<x7sojwtofd.fsf@kotonoha.tom-yam.or.jp>
References: <x7sojwtofd.fsf@kotonoha.tom-yam.or.jp>
X-Mailer: Mew version 1.93b37 on XEmacs 20.4 (Emerald)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Date: Tue, 21 Jul 1998 02:41:06 +0900
From: Mitsuru IWASAKI <iwasaki@jp.freebsd.org>
X-Dispatcher: imput version 980128
Lines: 82
Reply-To: doc-jp@jp.freebsd.org
Precedence: bulk
X-Distribute: distribute [version 2.1 (Alpha) patchlevel=24e+ JFUG special]
X-Sequence: doc-jp 4904
Subject: [doc-jp 4904] Re: <FAQ> sync 07/21
Errors-To: owner-doc-jp@jp.freebsd.org
Sender: owner-doc-jp@jp.freebsd.org

$B$*!<(B! $B$A$g$C$H$^$C$F$/$@$5$$(B!!

mrt> In message <199807201638.BAA13823@rei.snipe.rim.or.jp>,
mrt>  `motoyuki@snipe.rim.or.jp' wrote:
mrt> > > network.sgml $B$,Bg$-$$$H;W$&$N$G$9$,!"$=$3$G(B!! $B:#Ln$5$s(B!
mrt> > > network.sgml $B$r8e$m$+$i$d$C$F$/$l$^$;$L$+(B?
mrt> > > 
mrt> > > +        <verb>
mrt> > > +          alias port proto internalmachine:port port
mrt> > > +        </verb>
mrt> > > 
mrt> > > $B$"$?$j$G9gN.$C!<$3$H$G!#(B
mrt> > 
mrt> >   $B;d$O(B preface $B;O$a$?$H$3$m$J$N$G!"B<ED$5$s$K(B network $B$N8eH>ItJ,(B
mrt> > $B$r$*4j$$$G$-$J$$$G$9$+!)(B
mrt> 
mrt> $B$&$C!#0lFI$7$F$h$/J,$+$i$J$+$C$?$s$G!"Hr$1$F$?$s$G$9$,(B...
mrt> $B$d$C$F$_$^$9!#(B

$B9gN.%]%$%s%H$rD6$($F$d$C$A$c$C$F$^$9!#(B
$B$H$j$"$($:$3$l$NB3$-$r$*4j$$$G$-$^$9$+(B? $B$[$s$N(B 20$B9TDxEY$G$9!#(B
$B!t(B $B$D$$$G$KC/$+::FI$r$7$F$/$l$?$i4r$7$$$G$9!#(B

      <sect2>
        <heading>$B2?8N$[$H$s$I$N%2!<%`$,(B -alias $B%9%$%C%AIU$-$@$HF0$+$J$$$s$G$9$+(B?</heading>

        <p>libalias $B$r;H$C$F$$$k;~$K%2!<%`$J$I$NN`$N$b$N$,F0:n$7$J$$M}M3$O(B, 
        $B30B&$K$"$k%^%7%s$,@\B3$7$h$&$H$7$F$$$k$+(B, $BFbB&$K$"$k%^%7%s$K(B ($BM>7W$J(B) 
        UDP $B%Q%1%C%H$rAw?.$7$h$&$H$7$F$$$k$+$i$G$9(B. 
        $BFbB&$N%^%7%s$K$3$l$i$N%Q%1%C%H$rAw$k$Y$-$+$K$D$$$F(B, 
        packet alias $B%=%U%H%&%'%"$O4XCN$7$^$;$s(B. 

        <p>$B$&$^$/F0$+$9$?$a$K$O(B, $B<B9TCf$N$b$N$,LdBj$NH/@8$7$F$$$k(B
        $B%=%U%H%&%'%"$@$1$G$"$k$+$r3NG'$7(B, $B%2!<%H%&%'%$$N(B tun $B%$%s%?%U%'!<%9$KBP$7$F(B 
        tcpdump $B$r<B9T$9$k$+(B, $B%2!<%H%&%'%$>e$G(B ppp tcp/ip logging $B$rM-8z2=(B 
        (``set log +tcp/ip'') $B$7$F$/$@$5$$(B. 

        <p>$B9T57$N0-$$%=%U%H%&%'%"$r5/F0$9$k:]$K(B, $B%2!<%H%&%'%$%^%7%s$r(B
        $BDL2a$9$k%Q%1%C%H$r4X$7$9$k$Y$-$G$9(B. $B30B&$+$i2?$+%Q%1%C%H$,La$C$F$-$?;~$K(B, 
        $B$=$N%Q%1%C%H$OGK4~$5$l$k$G$7$g$&(B ($B$=$l$,LdBj$J$N$G$9(B). 
        $B$3$l$i$N%Q%1%C%H$N(B port $BHV9f$KCm0U$7$F(B, $B$=$N9T57$N0-$$%=%U%H%&%'%"$r(B
        $BDd;_$7$F$/$@$5$$(B. 
        $B$3$l$r?t2s7+$jJV$7$F(B port $BHV9f$,>o$KF1$8$G$"$k$+$r3NG'$7$F$_$F$/$@$5$$(B. 
        $BF1$8$G$"$C$?>l9g$O(B, /etc/ppp/ppp.conf $B$NE,@Z$J%;%/%7%g%s$K<!$N9T$rF~$l$k$H(B, 
        $B$=$N%=%U%H%&%'%"$OF0:n$9$k$h$&$K$J$k$G$7$g$&(B. 


        <verb>
          alias port proto internalmachine:port port
        </verb>

        <p>$B$3$3$G(B ``proto'' $B$O(B ``tcp'' $B$G$b(B ``udp''$B$G$b$h$/(B,
        ``internalmachine'' $B$O%Q%1%C%H$rAw$j$?$$%^%7%s(B, $B$=$7$F(B
        ``port'' $B$O%Q%1%C%H$N%G%#%9%H%M!<%7%g%s$N(B port $BHV9f$G$9(B. 

        <p>$B>e5-$N%3%^%s%I$rJQ99$;$:$KB>$N%^%7%s>e$G$=$N%=%U%H%&%'%"$r(B
        $B;HMQ$G$-$k$h$&$K$O$7$?$/$J$$$+$b$7$l$^$;$s(B. $B$=$7$F(B
        $BF1;~$KFs$D$NFbIt$N%^%7%s>e$G$=$N%=%U%H%&%'%"$r<B9T$9$k$3$H$O(B
        $B$3$N<ALd$NHO0O$rD6$($F$$$^$9(B. $B7k6I(B, $B30B&$N@$3&$+$i$O(B
        $BFbIt%M%C%H%o!<%/A4BN$,$?$@0l$D$N%^%7%s$H$7$F8+$($k$N$G$9(B. 

        <p>port $BHV9f$,>o$KF1$8$H$O8B$i$J$$>l9g(B, $B$5$i$K;0$D$N%*%W%7%g%s$,$"$j$^$9(B. 

        <p><bf>1)</bf> Submit support in libalias.  Examples of ``special
        cases'' can be found in /usr/src/lib/libalias/alias_*.c (alias_ftp.c
        is a good prototype).  This usually involves reading certain
        recognised outgoing packets, identifying the instruction that
        tells the outside machine to initiate a connection back to the
        internal machine on a specific (random) port and setting up a
        ``route'' in the alias table so that the subsequent packets
        know where to go.

        <p>This is the most difficult solution, but it is the best and
        will make the software work with multiple machines.

        <p><bf>2)</bf> Use a proxy.  The application may support socks5
        for example, or (as in the ``cvsup'' case) may have a ``passive''
        option that avoids ever requesting that the peer open connections
        back to the local machine.

        <p><bf>3)</bf> Redirect everything to the internal machine using
        ``alias addr''.  This is the sledge-hammer approach.
