From owner-FreeBSD-users-jp@jp.freebsd.org  Mon May 14 20:01:45 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id UAA49522;
	Mon, 14 May 2001 20:01:45 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from smtp3.dti.ne.jp (smtp3.dti.ne.jp [202.216.228.38])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id UAA49516
	for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 14 May 2001 20:01:44 +0900 (JST)
	(envelope-from mz-fug@pluto.dti.ne.jp)
Received: from solomon (ntthrsm05025.ppp.infoweb.ne.jp [211.133.111.153]) by smtp3.dti.ne.jp (8.9.3/3.7W) with SMTP id UAA07567 for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 14 May 2001 20:01:43 +0900 (JST)
Date: Mon, 14 May 2001 20:00:21 +0900
From: Hiroaki Abe <mz-fug@pluto.dti.ne.jp>
To: FreeBSD-users-jp@jp.freebsd.org
In-Reply-To: <20010418120033.B4DB.TOMOKAZU@colx.co.jp>
References: <a04320400b6ff61c3919e@[192.168.1.2]> <20010418120033.B4DB.TOMOKAZU@colx.co.jp>
Message-Id: <3AFFBAC535D.6046MZ-FUG@smtp.pluto.dti.ne.jp>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-2022-JP
Content-Transfer-Encoding: 7bit
X-Mailer: Becky! ver 1.25.07
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+010328
X-Sequence: FreeBSD-users-jp 61443
Subject: [FreeBSD-users-jp 61443] Re: port forwarding
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: mz-fug@pluto.dti.ne.jp

> PPP + ipfw + natd $B$G$b<B8=$G$-$^$9$,!"<+J,$G%k!<%k$N=q$-49$($r$9$k(B
> $B%9%/%j%W%H$H$+9M$($k$N$bLLE]$J$N$G!"!"?9ED$5$s$N8@$C$F$?(B
> > IIJ-PPP+NAT patch$B$G$O$J$/(B FreeBSD$B$N(B ppp$B$,;}$D(B NAT$B5!G=$r(B
> > $B;HMQ$7$F$$$k$J$i$P!"(Bnatd$B$r5/F0$7$J$/$F$b(B ppp.conf$B$G(B
> > $BF1$8;XDj$,$G$-$^$9(B(See 8 ppp)
> > $B!t(Bnatd$B$b(B ppp$B$N(B NAT$B$bF1$8(B libalias$B$r;H$C$F<BAu$5$l$F$$$k$?$a(B
> $B$,$h$$$G$9!#(B

$B!!K\7o!J(BPPP$B@\B3;~$N(Bport forwarding$B!K$K$D$$$F!"?'!9$H%"%I%P%$%9(B
$B$"$j$,$H$&$4$6$$$^$7$?!#;~4V$,$+$+$j$^$7$?$,!"(BFreeBSD$B$r(B3.3R$B$+$i(B
4.3R$B$K%P!<%8%g%s%"%C%W$7!"65$($F$$$?$@$$$?DL$j(Bppp$B$N(BNAT$B5!G=$r(B
$B;n$7$F$_$?$H$3$m!"0U?^DL$j$NF0$-$K$J$j$^$7$?!#(B
$B!!$"$j$,$H$&$4$6$$$^$7$?!#(B

ppp.conf--------
 set device /dev/cuaa1
 set log Phase Chat LCP IPCP CCP tun command
 set speed 230400
 set timeout 600
 set ifaddr 10.0.0.1/0 10.0.0.2/0 255.255.255.0 0.0.0.0
 add default HISADDR
 enable dns
 accept chap
 accept pap
 nat enable yes
 set openmode active
 set server 3000 ******
 set filter in 0 deny 0/0 0/0 udp dst eq 520
 set filter in 1 deny 0/0 0/0 tcp dst eq 137
 set filter in 2 deny 0/0 0/0 udp dst eq 137
 set filter in 3 deny 0/0 0/0 tcp dst eq 138
 set filter in 4 deny 0/0 0/0 udp dst eq 138
 set filter in 5 deny 0/0 0/0 tcp dst eq 139
 set filter in 6 permit 127.0.0.1/8 0/0 tcp dst eq 3000
 set filter in 7 deny 0/0 0/0 tcp dst eq 3000 syn
 set filter in 8 permit 0/0 0/0
 set filter out 0 deny 0/0 0/0 udp dst eq 520
 set filter out 1 deny 0/0 0/0 tcp dst eq 137
 set filter out 2 deny 0/0 0/0 udp dst eq 137
 set filter out 3 deny 0/0 0/0 tcp dst eq 138
 set filter out 4 deny 0/0 0/0 udp dst eq 138
 set filter out 5 deny 0/0 0/0 tcp dst eq 139
 set filter out 6 permit 0/0 0/0

niftyip:
 set phone *******
 set authname ********
 set authkey ********
 set dial "ABORT BUSY ABORT NO\\sCARRIER TIMEOUT 5 \"\" AT OK
-AT-OK \\dATN9E1Q0V1X3$N1=1 OK \\dATDT\\T TIMEOUT 40 CONNECT"
 nat port tcp 192.168.1.52:5800 5800
 nat port tcp 192.168.1.52:5900 5900
 nat port udp 192.168.1.52:5800 5800
 nat port udp 192.168.1.52:5900 5900

