From owner-FreeBSD-net-jp@jp.freebsd.org  Fri Nov 14 14:29:32 1997
Received: by jaz.jp.freebsd.org (8.8.8+2.7Wbeta7/8.7.3) id OAA01393
	Fri, 14 Nov 1997 14:29:32 +0900 (JST)
Received: by jaz.jp.freebsd.org (8.8.7+2.7Wbeta7/8.7.3) with ESMTP id OAA01385
	for <FreeBSD-net-jp@jp.freebsd.org>; Fri, 14 Nov 1997 14:29:22 +0900 (JST)
Received: (from gproxy@localhost)
	by host1.telewaynet.ad.jp (8.8.8/3.6Wbeta7) id OAA19256
	for <FreeBSD-net-jp@jp.freebsd.org>; Fri, 14 Nov 1997 14:28:40 +0900 (JST)
Received: from honswd006(192.168.1.15) by host1 via smap (3.1)
	id xma019254; Fri, 14 Nov 97 14:28:20 +0900
Received: from honscs004.telewaynet.ad.jp (honscs004.telewaynet.ad.jp [192.168.1.8])
	by honswd006.telewaynet.ad.jp (8.8.8/3.6Wbeta7) with ESMTP id OAA26344
	for <FreeBSD-net-jp@jp.freebsd.org>; Fri, 14 Nov 1997 14:29:09 +0900 (JST)
Received: from localhost (localhost [127.0.0.1])
	by honscs004.telewaynet.ad.jp (8.8.8/3.6Wbeta7) with ESMTP id OAA27009
	for <FreeBSD-net-jp@jp.freebsd.org>; Fri, 14 Nov 1997 14:28:39 +0900 (JST)
Message-Id: <199711140528.OAA27009@honscs004.telewaynet.ad.jp>
To: FreeBSD-net-jp@jp.freebsd.org
In-Reply-To: Your message of "Fri, 14 Nov 1997 13:26:33 +0900"
	<346BD2F9.9DE61BD3@vir.bekkoame.or.jp>
References: <346BD2F9.9DE61BD3@vir.bekkoame.or.jp>
X-Mailer: Mew version 1.93b1 on Emacs 20.2 / Mule 3.0 (MOMIJINOGA)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Date: Fri, 14 Nov 1997 14:28:38 +0900 (JST)
From: Kan Sasaki <sasaki@telewaynet.ad.jp>
X-Dispatcher: imput version 971024
Lines: 23
Reply-To: FreeBSD-net-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute [version 2.1 (Alpha) patchlevel=20]
X-Sequence: FreeBSD-net-jp 330
Subject: [FreeBSD-net-jp 330] Re: IP Filter Setup
Errors-To: owner-FreeBSD-net-jp@jp.freebsd.org
Sender: owner-FreeBSD-net-jp@jp.freebsd.org

  $B$5$5$-$G$9!#(B

> ipf.conf
> $B!JFbIt%M%C%H$+$i30It%M%C%H$X$N(B telnet $B@\B3$N$_$r5v2D$9$k!K(B
> --------------------------------
> pass out on ed0 proto tcp from x.x.x.136/29 to any port =  23
> pass in  on ed1 proto tcp from any to x.x.x.136/29 port >  1023
> 
> block in  from any to any
> block out from any to any
> --------------------------------

block in on ed1 all
block out on ed1 all

pass in  on ed1 proto tcp from any to x.x.x.130/32 port 9999 >< 20001
pass out on ed1 proto tcp from 192.168.2.0/24 to any port = telnet

$B$/$i$$$G$I$&$G$7$g$&$+!#(B

---
$BF|K\9bB.DL?.3t<02q<R(B  $B%7%j%&%9;v6H?d?JIt(B
$B:4!9LZ(B  $B42(B  sasaki@telewaynet.ad.jp
