From owner-FreeBSD-users-jp@jp.freebsd.org  Mon Apr  6 23:35:26 1998
Received: by jaz.jp.freebsd.org (8.8.8+3.0Wbeta7/8.7.3) id XAA10720
	Mon, 6 Apr 1998 23:35:26 +0900 (JST)
Received: by jaz.jp.freebsd.org (8.8.8+3.0Wbeta7/8.7.3) with ESMTP id XAA10714
	for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 6 Apr 1998 23:35:24 +0900 (JST)
Received: from rayearth.rim.or.jp (rayearth.rim.or.jp [202.247.130.242]) by ns11.rim.or.jp (8.8.5/3.5Wpl2-ns11/RIMNET-2) with ESMTP
	id XAA27276 for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 6 Apr 1998 23:35:23 +0900 (JST)
Received: (from uucp@localhost) by rayearth.rim.or.jp (8.8.5/3.5Wpl2-uucp1/RIMNET) with UUCP
	id XAA25166 for FreeBSD-users-jp@jp.freebsd.org; Mon, 6 Apr 1998 23:35:23 +0900 (JST)
Received: from localhost (localhost [127.0.0.1]) by red.snark.rim.or.jp (8.8.7/3.5Wpl7-98011205) with ESMTP id XAA08550 for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 6 Apr 1998 23:34:33 +0900 (JST)
To: FreeBSD-users-jp@jp.freebsd.org
From: "Shin'ya Kumabuchi" <kumabu@t3.rim.or.jp>
In-Reply-To: Your message of "Mon, 06 Apr 1998 16:14:15 +0900"
	<199804060715.QAA12981@smtp.kw.netlaputa.ne.jp>
References: <199804060715.QAA12981@smtp.kw.netlaputa.ne.jp>
X-Mailer: Mew version 1.87 on Emacs 19.28.2 / Mule 2.3
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Message-Id: <19980406233432Y.kumabu@t3.rim.or.jp>
Date: Mon, 06 Apr 1998 23:34:32 +0900
X-Dispatcher: imput version 970728
Lines: 52
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: bulk
X-Distribute: distribute [version 2.1 (Alpha) patchlevel=24]
X-Sequence: FreeBSD-users-jp 26948
Subject: [FreeBSD-users-jp 26948] Re: iij-ppp(nat) -auto problem of HTTP
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org

$B$/$^$V$A$G$9!#(B

> 	set dfilter 0 permit 0/32 0/0 tcp
> 	set dfilter 1 deny 0/0 0/0 tcp
> 	set dfilter 2 deny udp src eq 520
> 	set dfilter 3 permit 0/0 0/0

ppp(8) $B$rFI$a$P=q$$$F$"$j$^$9$,!"(Bfilter $B$N@_Dj$O(B first match $B$N$b$N$,(B
$BM-8z$K$J$j$^$9!#(B
$B$G$9$+$i(B

> 	set dfilter 1 deny 0/0 0/0 tcp

$B$3$l$G;OE@%"%I%l%9$,(B 0.0.0.0 $B0J30$NA4$F$N(B tcp $B$J(B packet $B$O(B(dial$B7@5!$H(B
$B$7$F$O(B)$B%V%m%C%/$5$l$F$$$^$9!#(B
$B!t(B http $B$b(B tcp $B$r;H$C$F$k$N$O$4B8$8$G$9$h$M(B?

$B$G!"(Btun? $B$O(B 0.0.0.0 $B$G=i4|2=$5$l$F$$$k$N$G!"(Bppp $B$rF0$+$7$F$k%^%7%s>e$+(B
$B$i$N(B tcp $B$J(B packet $B$J$i(B dial $B$5$l$k$,!"B>$N%m!<%+%k$J%^%7%s$+$i$N(B tcp
packet $B$G$O%@%a!"$H$$$&$3$H$K>e5-@_Dj$G$O$J$j$^$9!#(B

> $B!!$A$g$C$H4*0c$$$7$F$$$^$7$?!#(BNetscapeNavigator$B!V5/F0;~$K!W@\B3$5$l$k(B
> $B$s$G$9$M!#4{$K5/F0$7$F$"$k%V%i%&%6$+$i$O!"99?7%\%?%s$r$$$/$i2!$7$F$b5/(B

$B$3$l$O!":G=i$N;~(B($B5/F0;~(B)$B$O(B DNS $B$r0z$-$K$$$C$F$F!"$=$l$r7@5!$K(B dial $B$5(B
$B$l$F$k$+$i$G$7$g$&!#(B
$B!t(B DNS $B$O(B udp $B$G$9$+$i!#(B


> #	delete 0 ALL
> 	add 0 255.255.255.0 HISADDR

> $B!!$3$l!"%3%a%s%H$K$7$J$$$H%U%j!<%:$9$k$_$?$$$J$N$G!#(B

$B$&$%$s$H!"(Bppp(8) $B$H$+(B ppp.conf.sample $B$H$+8+$F@_Dj$7$F$^$9$+(B?
$B$A$c$s$HFI$s$@J}$,$$$$$G$9!#(B
filtering $B$NNc$H$7$F$O(B ppp.conf.filter.sample $B$,;29M$K$J$j$^$9$s$G!"$=(B
$B$l$b;2>H$5$l$k$3$H$r$*A&$a$7$^$9!#(B

$B$"$H!"(Bpatch $B$rEv$F$F$k>l9g$O!"(B
	set dfilter 10 deny tcp finrst
$B$H$+!"(Bafilter $B$K$b(B
	set afilter 10 deny tcp syn
	set afilter 11 deny tcp finrst
$B$J$s$+$bDI2C$7$F$*$$$?J}$,$&$l$7$$$G$7$g$&!#(B
$B!t(B $B$b$A$m$s!"(Brule-no $B$O(B permit 0/0 0/0 $B$N$b$N$h$j$b<c$/$J$$$H0UL#$J$$(B
$B!t(B $B$G$9!#(B(afilter 10 $B$N%k!<%k%;%C%H$OITMW$+$J!#!#!#(B)

      _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
     _/   $B7'^<?5Li(B                             _/
    _/      e-mail: kumabu@t3.rim.or.jp       _/
   _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
