From owner-FreeBSD-net-jp@jp.freebsd.org  Fri Aug 27 19:10:00 1999
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id TAA45197;
	Fri, 27 Aug 1999 19:10:00 +0900 (JST)
	(envelope-from owner-FreeBSD-net-jp@jp.FreeBSD.org)
Received: from mahler.intelight.co.jp (mahler.intelight.co.jp [210.233.60.226])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id TAA45191
	for <FreeBSD-net-jp@jp.freebsd.org>; Fri, 27 Aug 1999 19:09:59 +0900 (JST)
	(envelope-from ohba@intelight.co.jp)
Received: from titan.intra.intelight.co.jp (janus.intelight.co.jp [210.233.60.230])
	by mahler.intelight.co.jp (8.9.3/3.7W) with SMTP id TAA07540
	for <FreeBSD-net-jp@jp.freebsd.org>; Fri, 27 Aug 1999 19:11:20 +0900 (JST)
Message-Id: <199908271010.AA00041@titan.intra.intelight.co.jp>
From: Masashi Ohba <ohba@intelight.co.jp>
Date: Fri, 27 Aug 1999 19:10:01 +0900
To: FreeBSD-net-jp@jp.freebsd.org
In-Reply-To: <008101bef054$3b77f930$dd00a8c0@BLESS>
References: <008101bef054$3b77f930$dd00a8c0@BLESS>
MIME-Version: 1.0
X-Mailer: AL-Mail32 Version 1.10
Content-Type: text/plain; charset=iso-2022-jp
Reply-To: FreeBSD-net-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+990727
X-Sequence: FreeBSD-net-jp 1870
Subject: [FreeBSD-net-jp 1870] Re: NAT =?ISO-2022-JP?B?GyRCISdEORsoQg==?=
 =?ISO-2022-JP?B?GyRCSjgkRyQ5ISMkND11OEAkKjRqJCQkNyReJDkbKEI=?=
 =?ISO-2022-JP?B?GyRCISMbKEI=?=
Errors-To: owner-FreeBSD-net-jp@jp.freebsd.org
Sender: owner-FreeBSD-net-jp@jp.freebsd.org
X-Originator: ohba@intelight.co.jp

$BBg>l$G$9!#(B

$B<+Bp$G(B(DION$B%9%?%s%@!<%I(B)$B$GF1$8$h$&$J$3$H$r$7$F$$$^$9!#(B
192.168.0.x$B$J(BLAN --|HUB|--(ed1)|FreeBSD3.2|(ed0)--|HUB|--|$B%k!<%?!<(B(210.249.x.z)|

ed0$B$,(B210.249.x.x
ed1$B$,(B192.168.0.2

takesima $B$5$s$O=q$-$^$7$?(B:
> $B<+J,$J$j$K(BNAT$B$7$^$7$?$,!"$5$F$$$1$F$k$N$+$I$&$+J,$+$j$^$;$s!#(B
> $B$G!"$4=u8@$*4j$$?=$7>e$2$^$9!#(B

1.$BFbB&$+$i2?$,$G$-$F2?$,$G$-$F$J$$$+!)(B
2.$BFbB&$+$i30B&$K$J$K$,$7$?$$$+!)(B
3.$B30B&$+$iFbB&$K2?$,$5$l$?$/$J$$$+!)(B

$B$r8@$C$F$/$l$J$$$H=u8@$C$FFq$7$$$G$9$h!#(B

>$BL\I8$O!"(B
>
>$B%$%s%?!<%M%C%H(B
>$B!C(B
>$B%k!<%?!<(B192.168.1.1
>$B!C(B
>$B!C(Bed2$B!'(B192.168.1.2
>FreeBSD3.2$B!J$3$l$r(Bfirewall+NAT$B2=$1$5$;$?$$!K(B
>$B!C(Bed1:192.168.0.2
>$B!C(B
>$B$$$m$s$J(B192.168.0.$B#x$N%Q%=%3%s(B
>$B$G$9!#(B

$B%+!<%M%k$N@_Dj$,(B
> device ed0 at isa? port 0x300 net irq 10 iomem 0xd8000$B!!!z(B

$B$C$F!"!z$D$$$F$^$9$,(B($B$3$l$C$FJT=8$H$+DI2C$7$?$C$F$3$H$G$9$h$M!)(B)
PCI$B$N(BNE2000$B$G(Bed1,ed2$B$J$s$@$+$i$H$j$"$($:4X78L5$$$h$&$J5$$,$7$^$9!#(B

>network_interfaces="ed1 ed2 lo0"$B!!!z(B
>ifconfig_ed1="inet 192.168.0.2  netmask 255.255.255.0"$B!!!z(B
> ######
>ifconfig_ed2="inet 192.168.1.2  netmask 255.255.255.0"$B!!!z(B

ISA$B$@$H%+!<%M%k$G(BedX$B$KBP$7$F(Birq$B$rL@<(E*$K;XDj$9$k$N$G!"(B
$BF1$8<oN`$N%+!<%I$G$bG:$^$J$$$s$@$1$I!"F1$8(BPCI$B$N(BNIC$B$r(B2$BKg(B
$BA^$7$?>l9g$C$F!"$I$C$A$,$I$C$A$K3d$j?6$i$l$k$s$@$m$&!)(B
PCI$B%9%m%C%H=g$J$N$+$J!)(B
$B$G$b$3$l$b>e$+$i$H$+2<$+$i$H$+%^%6!<%\!<%I$K0MB8$9$k$N$+$J!)(B

$B!t(BNIC2$BKgA^$7$N>l9g!"%+!<%I$N<oN`$OJQ$($?J}$,$o$+$j$d$9$$(B
$B!t$H$$$&$N$O!"$I$3$+$G8+$?5$$,$9$k$J$!(B


$B@_Dj$K$D$$$F$O!"<+Bp$N3:EvItJ,$N(Brc.conf$B$O(B
network_interfaces="ed0 ed1 lo0"
ifconfig_ed0="inet 210.249.x.x netmask 255.255.255.248"
ifconfig_ed1="inet 192.168.0.2 netmask 255.255.255.0"

$B$G!"(Bipfw$B$H(Bnat$B$N@_Dj$r(Brc.conf$B$d(Brc.firewall$B$G$9$k$N$,(B
$B$o$+$i$J$$$^$^!":#F|$K;j$k$N$G!D(B(^^;)
/usr/local/etc/rc.d/natd.sh$B$H$$$&<!$N$h$&$J%U%!%$%k$r(B
$B:n$C$F(B+x$B$7$F!"5/F0;~$K<B9T$5$;$F$^$9!#(B
$B47$l$N$;$$$+!"<+J,$K$O$3$NJ}$,8+DL$7NI$/$C$F!#(B
#!/bin/sh

echo 'Start natd '
echo ''

## setting ipfw

# Flush out the list before we bigin.
/sbin/ipfw -f flush

/sbin/ipfw add divert 8668 all from any to any via ed0
/sbin/ipfw add pass all from any to any

# Start up Network Address Transretor deamonn (natd)

/sbin/natd -p 8668 -n ed0

ipfw list$B$N7k2L$O$3$l$@$1!#(B
00100 divert 8668 ip from any to any via ed0
00200 allow ip from any to any
65535 deny ip from any to any

$B%U%!%$%"%&%)!<%kMQ$K(Bipfw$B$9$k$N$G$7$?$i5$$r$D$1$k$3$H$OB?$$$H(B
$B;W$$$^$9$,!";d$N>l9g!";H$C$F$J$$;~$OEE8;$NMn$A$F$$$k!"FbB&$N(B
Windows95/NT$BMQ$N(BIP$B%"%I%l%93NJ]$N$?$a$K$D$+$C$F$^$9$N$G!"(B
$BAGDL$7$J@_Dj$G$9!#(B

$B0JA0!"!VAGDL$7$G%;%-%e%j%F%#$OBg>fIW!)!W$HJ9$+$l$?$3$H$"$j$^$7$?$,(B
1.$BFbB&$N(BLAN$B$r;H$&?M4V$O8B$i$l$F$$$k$N$GFbB&$GJQ$J$3$H$O$J$$$@$m$&(B
2.$B30B&$+$iFbB&$N%W%i%$%Y!<%H(BIP$B$KD>@\0-5:$G$-$J$$(B
  (ipfw+natd$B$N%^%7%s$,%/%i%C%/$5$l$?$i$=$N8B$j$8$c$J$$$1$I!D(B)
3.ipfw+natd$B$N@_Dj$H(BFreeBSD$B$,%/%i%C%/$5$l$k$3$H$O(B($B$?$V$s(B)$BD>@\4X78L5$$(B
4.$B%k!<%?!<$H8D!9$N(BFreeBSD$B%^%7%s$G$*$+$7$J@\B3$O4F;k$7$F$$$k!#(B

$B$H$$$&$3$H$G!";HMQ$NL\E*$HJL$N%;%-%e%j%F%#BP:v$G(B
ipfw$B$N@_Dj$K6E$i$J$/$F$b0BA4$8$c$J$$$+$J!<$H9M$($F$^$9!#(B

$B!t$3$NJU$,4m$J$$$h$C$F;XE&$,$"$C$?$i4?7^$7$^$9(B:)

--------------------------------------------------
$BBg>l@5;V(B (Masashi Ohba)
e-mail ohba@intelight.co.jp
URL    http://www.intelight.co.jp
