From owner-FreeBSD-users-jp@jp.FreeBSD.org Mon Jul 26 15:49:52 2004
Received: (from daemon@localhost)
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) id i6Q6nqV06444;
	Mon, 26 Jul 2004 15:49:52 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from mail1.accsnet.ne.jp (mail1.accsnet.ne.jp [210.235.48.69])
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) with ESMTP/inet id i6Q6nq806439
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Mon, 26 Jul 2004 15:49:52 +0900 (JST)
	(envelope-from ushida@msa.biglobe.ne.jp)
Received: from olive.localdomain (164.248.accsnet.ne.jp [202.220.248.164])
	by mail1.accsnet.ne.jp (8.9.3p2/3.7W-ns) with ESMTP id PAA20786
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Mon, 26 Jul 2004 15:49:51 +0900 (JST)
Received: from dove.localdomain (dove.localdomain [192.168.0.2])
	by olive.localdomain (Postfix) with SMTP id 1B09079
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Mon, 26 Jul 2004 15:49:51 +0900 (JST)
From: Jun USHIDA <ushida@msa.biglobe.ne.jp>
To: FreeBSD-users-jp@jp.FreeBSD.org
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-2022-JP
Message-ID: <040726154948.M0160700@ushida.msa.biglobe.ne.jp>
X-Mailer: mnews [version 1.22PL5] 2001-02/07(Wed)
Reply-To: FreeBSD-users-jp@jp.FreeBSD.org
Precedence: list
Date: Mon, 26 Jul 2004 15:49:51 +0900
X-Sequence: FreeBSD-users-jp 80261
Subject: [FreeBSD-users-jp 80261] firewall =?ISO-2022-JP?B?GyRCRmIbKEI=?=
 =?ISO-2022-JP?B?GyRCSXQkThsoQg==?= ftp server (Windows,Warftpd)
	=?ISO-2022-JP?B?GyRCJHI4eDMrJDkkaxsoQg==?=
 =?ISO-2022-JP?B?GyRCSn1LIRsoQg==?= 
Sender: owner-FreeBSD-users-jp@jp.FreeBSD.org
X-Originator: ushida@msa.biglobe.ne.jp
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+040717


$B5mED$H?=$7$^$9!#(B

firewall $BFbIt$N(B ftp server (Windows2000,War ftpd)$B$r8x3+$9$kJ}K!$,(B
$BCN$j$?$$$N$G$9$,$I$&$7$F$b$&$^$/$$$+$J$$$N$G<ALd$5$;$F2<$5$$!#(B

firewall $BFbIt$N(B ftp server (172.26.168.1)$B$O(B 
Windows 2000 $B$G(B War ftpd ver. 1.82.0.7 $B$,F0:n$7$F$$$^$9!#(B
(ftp server$B$NF0:n3NG'<+BN$O(B firewall $BFbIt$NB>$N%[%9%H$+$i%F%9%H:Q$G$9!#(B)

firewall $B$O(B FreeBSD 4.10-STABLE(5$B7nKv(B) $B$G(B, IPfilter + ipnat $B$G(B
$B<B8=$7$h$&$H$7$F$$$^$9(B
$B%F%9%H$N$?$a!"(Bipf $B$N@_Dj$OA4ItDL$9$3$H$K$7$F!"$^$:!"(BNAT$B$N@_Dj$r$7$^$7$?!#(B
$B30It$+$iFbIt$N(B Windows2000 $B$X$N(B VNC $B$K$h$k@\B3$O(B rdr $B$G<B8=$G$-$^$7$?!#(B
$B30It$+$iFbIt$N(B Windows2000 $B$X$N(B ftp $B$K$h$k@\B3$O(B ftp $B$N(B 21$BHV(B port $B$K$D$$$F$O(B
rdr $B$G<B8=$G$-$^$7$?!#(B($B$3$3$G$O(Bfirewall $B$N(B 3000$BHV$r(B redirect $B$7$F$$$^$9!#(B)

------  /etc/ipnat.rules $B$3$3$+$i(B -----------------------------------------
map fxp0 172.26.168.0/22 -> 0/32 proxy port ftp ftp/tcp
map fxp0 172.26.168.0/22 -> 0/32 portmap tcp/udp auto
map fxp0 172.26.168.0/22 -> 0/32
#
# For VNC
rdr fxp0 0/0 port 5901 -> 172.26.168.1 port 5900 tcp/udp
#
# For War ftpd 
rdr fxp0 0/0 port 3000 -> 172.26.168.1 port 21 tcp/udp
------  /etc/ipnat.rules $B$3$3$^$G(B -----------------------------------------

$B$3$3$^$G$G(B $BFbIt$N(B ftp server $B$K(B $B30It$+$i(B ftp $B@\B3$G$-$^$9$,!"(B
ftp-data $B%]!<%H$K$D$$$F$N@_Dj$,$J$$$?$a(B $B<B:]$N%G!<%?$N$d$j$H$j$O$G$-$^$;$s!#(B

$B0lJ}(B ftp-data $B$N$?$a$N@_Dj$J$N$G$9$,!"(B
http://www.usupi.org/info/ipfil2.html
$B$r;29M$K$7$F(B

bimap fxp0 172.26.168.1/32 -> 10.56.170.18/32 
(172.26.168.1: firewall $BFbIt$N(Bftp server $B$N(B IP address)
(10.56.170.18: firewall $B$N30B&(B NIC (fxp0)$B$N(B IP address)

$B$rIU$12C$($F$_$?$N$G$9$,!"$3$l$G$9$H!"(Bfirewall $B%^%7%s$K30It$+$iF~$C$FMh$?DL?.$N(B
$B$9$Y$F$,(B 172.26.168.1 $B$KE>Aw$5$l$F$7$^$C$F$$$k$h$&$G!"(B
firewall $B%^%7%s$K(B $B30It$+$i(B ssh $B$G7R$2$F(Blogin $B$9$k$3$H$,(B
$B$G$-$J$/$J$C$F$7$^$$$^$7$?!#(B

rdr $B$G$O$J$/!"(Bbimap $B$r;H$&$H$$$&$H$3$m$^$G$O9g$C$F$$$k$H;W$&$N$G$9!#(B
$B$I$J$?$+%"%I%P%$%9$rD:$1$^$;$s$G$7$g$&$+!)(B
$B$h$m$7$/$*4j$$CW$7$^$9!#(B

--
Jun Ushida
