From owner-FreeBSD-users-jp@jp.freebsd.org  Tue Nov 26 21:12:56 1996
Received: by jaz.jp.freebsd.org (8.8.3+2.6Wbeta9/8.7.3) id VAA02398
	Tue, 26 Nov 1996 21:12:56 +0900 (JST)
Received: by jaz.jp.freebsd.org (8.8.3+2.6Wbeta9/8.7.3) with SMTP id VAA02393
	for <FreeBSD-users-jp@jp.freebsd.org>; Tue, 26 Nov 1996 21:12:54 +0900 (JST)
Received: from pcmiwa.lac.co.jp (pcmiwa.dev.lac.co.jp [172.16.18.11]) by lacgw.lac.co.jp (8.6.12/8.6.9) with SMTP id VAA00205 for <FreeBSD-users-jp@jp.freebsd.org>; Tue, 26 Nov 1996 21:12:48 +0900
Message-Id: <9611261212.AA00987@pcmiwa.lac.co.jp>
Date: Tue, 26 Nov 1996 21:12:21 +0900
From: Nobuo Miwa <n-miwa@lac.co.jp>
To: FreeBSD-users-jp@jp.freebsd.org
X-Mailer: AL-Mail 1.12
Reply-To: FreeBSD-users-jp@jp.freebsd.org
X-Distribute: distribute [version 2.1 (Alpha) patchlevel=19]
X-Sequence: FreeBSD-users-jp 6813
Subject: [FreeBSD-users-jp 6813] IP Filter
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org

$B$O$8$a$^$7$F!#(J
$B;0NX!w%i%C%/$H$$$$$^$9!#=i$a$FH/8@!J<ALd!K$5$;$FD:$-$^$9!#(J
$B$h$m$7$/$*4j$$$$$?$7$^$9!#(J

$B8=:_!"(JIP Filter$B$r%F%9%H$7$F$$$k$N$G$9$,!"(JNAT$B5!G=$,$&$^$/(J
$BF0:n$7$^$;$s!#>u67$O!"0J2<$N$h$&$K$J$C$F$$$^$9!#(J

           +---------------+
           | FreeBSD2.1.5R |"kanegon" (192.168.1.0$B$N%M%C%H%o!<%/$OCN$i$J$$!K(J
           +-------+-------+
                   | 172.16.18.11/16
       *-----------+------+------------*
                          | 172.16.18.10/16 (ed1)
                    +-----+---------+
            "gamera"| FreeBSD2.1.5R | IP Filter 3.1.1
                    +-----+---------+
                          | 192.168.1.1/24 (ed0)
      *----------+--------+----------------*
                 |
             +---+--+ 192.168.1.10/24
             |  PC  | (Default gateway$B$O(J192.168.1.1)
             +------+

IP Filter3.1.1(ip_fil3.1.1.tar)$B$r0J2<$N<j=g$G%$%s%9%H!<%k$7$^$7$?!#(J

  1. FreeBSD2.1.5R$B$r(J"gamera"$B$K(JCDROM$B$+$i%$%s%9%H!<%k(J
  2. GENERIC$B$r%3%T!<$7(J(GAMERA$B%U%!%$%k(J)$B!"(Jed0,ed1$B$N(JIO/IRQ$B$r@_Dj$7!"(J
     $B%+!<%M%k$r:F9=C[(J
  3. ip_fil3.1.1.tar$B$r2rE`$7!"(Jmake bsd -> BSD/make install -> FreeBSD/minstall
     $B$r<B9T!#FC$K%(%i!<L5$7!#(J
  4. /etc/sysconfig$B$N(Jrouter=routed$B$r(Jrouter=NO$B$KJQ99(J
       $B!J8e$G!"(Jrouted $B$d(J gateway $B$b;n$7$?(J)
  4. $B%+!<%M%k$r:F9=C[(J(config GAMERA -> make depend;make) $B%(%i!<L5$7!#:F5/F0!#(J
  5. modload if_ipl.o$B$r<B9T(J(rc.local$B$K$bF~$l$k(J) modstat$B$G3NG'(J
  6. pass in all
     pass out all
     $B$H$$$&FbMF$r(Jipf -f $B$K$F<B9T!#$3$l$OITMW$+!)(J
  7. map ed1 192.168.1.0/24 -> 172.16.18.10/32
     $B$H$$$&FbMF$r(Jipnat -f $B$K$F<B9T!#(Jipnat -l $B$G3NG'!#(J
  8. PC$B$+$i!"(Jtelnet 172.16.18.11$B$r<B9T$7$F$b@\B3$G$-$J$$!#(J
     PC$B$+$i!"(Jtelnet 172.16.18.10$B$O@\B3$G$-$k!#(J

telnet 172.16.18.11$B$,7R$,$i$J$$$N$,LdBj$G$9!#(J
$B$I$J$?$+(JIP Filter$B$r;n$5$l$?J}$,$$$i$C$7$c$$$^$7$?$i!"%3%a%s%H2<$5$$(Jm(_ _)m$B!#(J

<Nobuo Miwa>                    ( @ @ )
---------------------------o00o--(. .)--o00o----------------------------
n-miwa@lac.co.jp
LAC CO.,LTD.   TEL: +81-3-3431-3484   FAX: +81-3-3431-3586   
