From owner-FreeBSD-net-jp@jp.freebsd.org  Mon Sep 13 09:42:38 1999
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id JAA91635;
	Mon, 13 Sep 1999 09:42:38 +0900 (JST)
	(envelope-from owner-FreeBSD-net-jp@jp.FreeBSD.org)
Received: from ns.apl.pref.akita.jp ([210.136.178.2])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id JAA91630
	for <FreeBSD-net-jp@jp.freebsd.org>; Mon, 13 Sep 1999 09:42:37 +0900 (JST)
	(envelope-from yoshio@apl.pref.akita.jp)
Received: (from bin@localhost)
	by ns.apl.pref.akita.jp (8.8.8/3.6W) id JAA00846
	for <FreeBSD-net-jp@jp.freebsd.org>; Mon, 13 Sep 1999 09:42:36 +0900 (JST)
Received: from gate.inside-apl(192.168.1.254) by ns.apl.pref.akita.jp via smap (V2.1)
	id xma000844; Mon, 13 Sep 99 09:42:11 +0900
Received: (from bin@localhost)
	by gate.apl (8.8.8/3.6W) id JAA16507
	for <FreeBSD-net-jp@jp.freebsd.org>; Mon, 13 Sep 1999 09:42:11 +0900 (JST)
X-Authentication-Warning: gate.apl: bin set sender to <yoshio@apl.pref.akita.jp> using -f
Received: from mebius.apl(172.27.4.180) by gate.apl via smap (V2.1)
	id xma016503; Mon, 13 Sep 99 09:42:00 +0900
Message-Id: <9909130047.AA00603@mebius.apl.pref.akita.jp>
Date: Mon, 13 Sep 1999 09:47:04 +0900
From: Yoshio Funaki <yoshio@apl.pref.akita.jp>
To: FreeBSD-net-jp@jp.freebsd.org
MIME-Version: 1.0
X-Mailer: AL-Mail 1.22
Content-Type: text/plain; charset=iso-2022-jp
Reply-To: FreeBSD-net-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+990727
X-Sequence: FreeBSD-net-jp 1903
Subject: [FreeBSD-net-jp 1903] Does self-ip_forwarding NAT exist ?
Errors-To: owner-FreeBSD-net-jp@jp.freebsd.org
Sender: owner-FreeBSD-net-jp@jp.freebsd.org
X-Originator: yoshio@apl.pref.akita.jp

$B$O$8$a$F$NEj9F$K$J$j$^$9!#A%LZ!w=)ED8)N)?^=q4[$H$b$&$7$^$9!#(J
FreeBSD-net-jp 1895$B$HF1$8$h$&$J<ALd$J$N$G$9$,!">/!9>u67$,0[$J$k$N$G(J
$B<ALd$5$;$F$/$@$5$$!#$^$?!"OC$,Cj>]E*$G$9$,!"FbItE*$JLdBj$G(J
$B$"$^$j6qBNE*$K$+$1$J$$$3$H$r$*5v$7$/$@$5$$!#(J

$B8=:_!"0J2<$N$h$&$J9=@.$G%M%C%H%o!<%/$rF0$+$7$F$$$^$9!#(J

          subnet A              subnet B  
router A ---------- firewall A ----------- firewall B -- router B (global)

subnet A$B$O!"JL(JLAN$B$N0lIt$G!"(Jdefault route$B$O(Jrouter A$B$K$J$C$F$$$^$9!#(J
subnet B$B$O!"%5!<%P72$,$"$k(Jsubnet$B$G!"(Jdefault route$B$O(Jfirewall B$B$K(J
$B$J$C$F$$$^$9!#(Jsubnet A$B$O30$K$D$J$,$C$F$$$J$$$N$G!"30$K$G$k>l9g(J
firewall A$B>e$N(Jproxy$B$r2p$7$F30$K$G$^$9!#(J

$B$G!":#2s!"6HL3MQ$N(Jsubnet C$B$r?7$?$K0J2<$N$h$&$K@\B3$9$kM=Dj$G$*$j$^$9!#(J

          subnet A              subnet B  
router A ---------- firewall A ----------- firewall B -- router B (global)
 $B!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!(J|
                                firewall C
                                     |
                                     | subnet C
                                     |
                                  server 

$B$G!"<ALd$NK\Bj$J$N$G$9$,!"(Jsubnet A$BFb$N(Jclient$B$+$i(Jsubnet C$BFb$N(Jserver
$B$K@\B3$9$kI,MW$,$"$k$N$G$9$,!"(Jserver$B>e$GAv$k%"%W%j$,FC<l$J;EMM$G(J
$B!V#1$D$N(JIP$B$KBP$7$F#1$D$N(Jport$B$7$+3d$jEv$F$J$$!W$H$$$&$U$&$K$J$C$F$*$j$^$7$F(J
proxy$B!J$?$H$($P(JTIS FWTK plug-gw$B!K$G$O(JIP address$B$,(Jfirewall C$B$N$b$N$K(J
$B$J$C$F$7$^$$(Jsubnet A$BFb$N#18D$N(Jclient$B$7$+@\B3$G$-$^$;$s!#(J
$B$=$3$G!"@EE*(JNAT$B$rMQ$$$F(Jfirewall A $B$*$h$S(Jfirewall C$B>e$G(Jaddress transfer
$B$r$+$1$h$&$H9M$($?$N$G$9$,!"(Jnatd$B$d(Jip-filter$B$rMQ$$$k>l9g!"(Jip$B$r(Jforward
$B$9$kI,MW$,$"$k$3$H$,$o$+$j$^$7$?!#(J
$B8=:_$N(Jfirewall policy$B$H$7$F!V(JIP$B$r(Jforward$B$7$J$$!W$3$H$K$7$F$$$k$N$G(J
$B!J(Jgateway_enable=NO$B$G@_Dj!K$3$N$^$^$G$O@\B3$G$-$^$;$s!#$=$3$G(J
$B!V<+A0$G(JIP$B$r(Jfoward$B$7$F$/$l$k(JNAT$B!J@EE*(JNAT)$B$H$7$F5!G=$9$k$b$N!W$r(J
$BC5$7$F$$$k$N$G$9$,!"MWNN$rF@$^$;$s!#$I$J$?$+$4B8$8$"$j$^$;$s$G$7$g$&$+!)(J

$B$^$?!"2>$K(Jfirewall A,firewall C$B$G(JIP$B$r(Jforward$B$7$J$1$l$P$J$i$J$/$J$C$?>l9g(J
server$B$H$*OC$7$9$k%W%m%H%3%k$N$_(JNAT$B$GDL$9$3$H$K$7$?$$$N$G$9$,!"$=$N$h$&$J(J
$B@_Dj$O2DG=$G$7$g$&$+!#(J
$B$A$J$_$K(Jsubnet A$B$H(Jsubnet B$B$N4V$O(Jdelegate$B$G(Jhttp,pop3$B!"(Jrtspd$B$G(Jrealmedia$B!"(J
socks5,ssh$B$rDL$7$F$$$^$9!#(J

$B$h$m$7$/$*4j$$$$$?$7$^$9!#(J

$BA%LZ!!4nIW!!(Jyoshio@apl.pref.akita.jp
                               

                                  
 
