From owner-FreeBSD-net-jp@jp.freebsd.org  Tue Feb 16 05:26:26 1999
Received: (from daemon@localhost)
	by jaz.jp.freebsd.org (8.9.1+3.1W/8.7.3) id FAA28342;
	Tue, 16 Feb 1999 05:26:26 +0900 (JST)
	(envelope-from owner-FreeBSD-net-jp@jp.FreeBSD.org)
Received: from cserver1.humanitec.ac.jp ([210.130.249.12])
	by jaz.jp.freebsd.org (8.9.1+3.1W/8.7.3) with ESMTP id FAA28328
	for <FreeBSD-net-jp@jp.freebsd.org>; Tue, 16 Feb 1999 05:26:22 +0900 (JST)
	(envelope-from okada@cynet.co.jp)
Received: from okada ([207.92.173.193]) by cserver1.humanitec.ac.jp (8.8.3/8.8.3) with SMTP id FAA22863 for <FreeBSD-net-jp@jp.freebsd.org>; Tue, 16 Feb 1999 05:23:07 +0900 (JST)
Message-ID: <36C880A1.91E@cynet.co.jp>
Date: Tue, 16 Feb 1999 05:16:33 +0900
From: Takumi Okada <okada@cynet.co.jp>
Organization: Cyber Net Communications Inc.
X-Mailer: Mozilla 3.03 [ja] (Win95; I)
MIME-Version: 1.0
To: FreeBSD-net-jp@jp.freebsd.org
References: <36C5B591.1B8E3D5D@cty-net.ne.jp>
Content-Type: multipart/mixed; boundary="------------572974DA52DD"
Reply-To: FreeBSD-net-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+981115
X-Sequence: FreeBSD-net-jp 1357
Subject: [FreeBSD-net-jp 1357] Re: =?ISO-2022-JP?B?GyRCI04jSSNDRnMbKEI=?=
 =?ISO-2022-JP?B?GyRCS2c6OSQ3GyhK?= 
Errors-To: owner-FreeBSD-net-jp@jp.freebsd.org
Sender: owner-FreeBSD-net-jp@jp.freebsd.org
X-Originator: okada@cynet.co.jp

This is a multi-part message in MIME format.

--------------572974DA52DD
Content-Type: text/plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit

Ryouma Higuchi wrote:

> $B!X$d$j$?$$$3$H!Y(J
> $B$3$N@\B3$N7A$G!J(JFreeBSD$B$rDL$7$F!K(JWin98$B$N%V%i%&%6!<$d%a!<%i!<$r;HMQ$7$?(J

$B$3$N$^$^$G(J FreeBSD$B$X(J PROXY$B$rF~$l$l$P$G$-$^$9$M!#(J
Web$B$O(J Squid $B$r;HMQ$7$F(J
mail$B$O(J Delegate $B$r;HMQ$9$k!#(J


$B$7$+$7!"(JNat$B$r;HMQ$7$?$$$J$i(J IP Filter$B$J$I$rF3F~$9$kI,MW$,$"$j$^$9!#(J
$B@N:n$C$?%a%b$r$$$+$KE:IU$7$^$9!#(JFreebsd2.2.1$B$G$NNc$G$9!#(J

-- 
Takumi Okada

--------------572974DA52DD
Content-Type: text/plain; charset=iso-2022-jp; name="ipfilter.txt"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline; filename="ipfilter.txt"

FireWall$B$N:n@.!J(JIP_Filter NAT$B7?!K(J
    freebsd2.2.1$B$G$NNc(J

0.cdrom$BAuCV$NIU$1BX$((J
    0.1 $B%^%7%s$r$"$1$F(Jcdrom$B$r(JIDE0$B$N%9%l!<%V$H$7$F@_Dj$9$k!#(J

1.Lan$B%\!<%I$NF3F~(J
    1.1 Jumper$B$^$?$O(JFD$B$G%;%C%H%"%C%W$G$-$k$b$N$r#2KgF3F~$9$k!#(J

        device  port    irq iomem





2.FreeBSD$B$NF3F~(J
    2.1 MBR$B$O(J Standard $B$rF3F~$9$k!#(J
    2.2 filesystem$B$O!"(J          /   40m
                swap    128m
                /var    40m
                /usr    $B;D$jA4It(J
    2.3 Developer $B$rF3F~$9$k!#(J
    2.4 $B%*%W%7%g%s%=%U%H$O$J$7!JI,MW$K1~$8$F(J tcp wrapper$B$J$I$rF3F~$9$k!K!#(J
    2.5  root $B$N%Q%9%o!<%I$OI,$:@_Dj$9$k!#(J
    2.6 cynet$B%f!<%6$r:n@.$9$k!#(J group$B$O(J wheel$B$r@_Dj$9$k!#(J

3.kernel$B:F9=C[5Z$S(JIP_Filter$BAH$_9~$_(J
    3.1 cp /sys/i386/conf/GENERIC /sys/i386/conf/FIREWALL
    3.2 vi /sys/i386/conf/FIREWALL
        $B$3$N;~%O!<%I%&%'%"(JLan$B4XO"$N%Q%i%a!<%?$r@_Dj$9$k!#(J
        $B0J2<$NNc$O!"(JLan$B%\!<%I#1KgL\(J ed0$B!"(JLan$B%\!<%I#2KgL\(J ed1$B!"$N@_DjNc!#(J
        device ed0 at isa? port 0x300 net irq  3 iomem 0xd8000 vector edintr
        device ed1 at isa? port 0x320 net irq  5 iomem 0xd8000 vector edintr

    3.3 /usr/sbin/config FIREWALL

    3.4 /usr/local/src $B$X(J IP_Filter $B$NG[I[%a%G%#%"$rE83+$9$k!#(J
    3.5 cd /usr/local/src/ip_fil3.2.3
    3.6 make freebsd22 IPFILKERN=FIREWALL
    3.7 make install-bsd
    3.8 FreeBSD-2.2/minstall

    3.9 /usr/sbin/config $B%[%9%HL>(J
    3.10 cd /sys/compile/$B%[%9%HL>(J
    3.11 make depend; make;make install

4.NAT$B$N@_Dj(J
    4.1 /etc/narules$B$r0J2<$N$h$&$JFbMF$G:n@.$9$k!#30It%$%s%?%U%'!<%9$,(J ed0 $B$N;~!#(J
        map ed0 172.16.0.0/16 -> $B%0%m!<%P%k%"%I%l%9(J/32 portmap tcp/udp 10000:65000

    4.2 $B=i4|2=%9%/%j%W%H(J /etc/rc.local $B$K0J2<$rDI2C$9$k!#(J
        modload /lkm/if_ipl.o
        ipnat -f /etc/natrules

5.$B%$%s%?!<%U%'%$%9@_Dj(J
    5.1 /etc/sysconfig $B$N0J2<$N8D=j$r@_Dj$9$k!#(J
        hostname=$B%[%9%HL>(J
        network_interfaces="ed0 ed1 lo0"
        ifconfig_ed0="inet $B%0%m!<%P%k%"%I%l%9(J netmask $B%5%V%M%C%H%^%9%/(J"
        ifconfig_ed1="inet 172.16.1.1 netmask 255.255.0.0"
        ifconfig_lo0="inet localhost"
        sendmail_flags="NO"
        gateway="YES"

6. $B$=$NB>(J
    6.1 $B$3$N%^%7%s$N>u674IM}$N$?$a(J root$B%f!<%6$N%a%C%;!<%8$rE>Aw$9$k!#(J
        /.forward$B$rJT=8$7$F!"%a!<%k%"%I%l%9(J($B$?$H$($P(Jokada@cynet.co.jp)$B$r5-F~$9$k!#(J

7. $B%F%9%H(J
    7.1 $B%j%V!<%H$9$k!#(J


8. FireWall$B$N:F:n@.(J
    FireWall$B$r:F:n@.$9$k$H$-$O>e5-<j=g$r<B9T$9$kA0$K$"$i$+$8$a0J2<$N%U%!%$%k$r(J
    $B%P%C%/%"%C%W$7$F$*$-!"%9%F%C%W(J3$B$r<B9T$9$kA0$K%j%9%H%"$9$k!#(J
        /etc/hosts
        /etc/resolv.conf
        /etc/sysconfig
        /etc/rc.local
        /etc/natrules

--------------572974DA52DD--


