From owner-FreeBSD-users-jp@jp.freebsd.org  Tue Apr  7 15:50:41 1998
Received: by jaz.jp.freebsd.org (8.8.8+3.0Wbeta7/8.7.3) id PAA14410
	Tue, 7 Apr 1998 15:50:41 +0900 (JST)
Received: by jaz.jp.freebsd.org (8.8.8+3.0Wbeta7/8.7.3) with ESMTP id PAA14403
	for <FreeBSD-users-jp@jp.freebsd.org>; Tue, 7 Apr 1998 15:50:37 +0900 (JST)
Received: from ryuuoh (km2-ppp11.kw.netlaputa.or.jp [202.208.194.139])
	by smtp.kw.netlaputa.ne.jp (8.8.8/8.8-smtp) with SMTP id PAA16028
	for <FreeBSD-users-jp@jp.freebsd.org>; Tue, 7 Apr 1998 15:51:39 +0900 (JST)
Message-Id: <199804070651.PAA16028@smtp.kw.netlaputa.ne.jp>
X-My-Real-Login-Name: mychro; smtp.kw.NetLaputa.ne.jp
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-2022-jp
X-Mailer: Denshin 8 Go V321.1b7
Date: Tue, 07 Apr 1998 15:50:07 +0900
From: MicroCassetteMan <mychro@kw.NetLaputa.ne.jp>
To: FreeBSD-users-jp@jp.freebsd.org
In-Reply-To: Your message of "Mon, 06 Apr 1998 16:14:15 +0900"
 	<199804060715.QAA12981@smtp.kw.netlaputa.ne.jp>
References: <199804060715.QAA12981@smtp.kw.netlaputa.ne.jp>
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: bulk
X-Distribute: distribute [version 2.1 (Alpha) patchlevel=24]
X-Sequence: FreeBSD-users-jp 26968
Subject: [FreeBSD-users-jp 26968] iij-ppp(nat) Filter setting =?ISO-2022-JP?B?GyRCN2tPQBsoSg==?=
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org

$B!!>.>>!w%M%C%H%i%T%e%?$G$9!#(J

$B!!$$$m$$$mD4$Y2s$C$F!"$4=u8@$bB??t$$$?$@$-!"2<$N$h$&$KMn$ACe$-$^$7$?!#(J
samba$B$bN)$A>e$2$F$$$k$N$G!"(JSMB$B$r%V%m%C%/$7$F$$$^$9!#(J

http://mango.kuhp.kyoto-u.ac.jp/~masahiro/freebsd/ppp.html

$B!!$[$H$s$I$r$3$N%Z!<%8$h$jD:$-$^$7$?$,!"B>$K$b(J

http://www.imasy.or.jp/~kazz/iij-ppp-on-FreeBSD/ppp.html

$B$H$$$C$?$H$3$m$,$"$k$h$&$G$9!#(J
$B!!3'MM$K46<U$$$?$7$^$9!#(J


# RIP packets
	set ifilter 0 deny 0/0 0/0 udp dst eq 520
# SMB packets
	set ifilter 1 deny 0/0 0/0 tcp dst eq 137
	set ifilter 2 deny 0/0 0/0 udp dst eq 137
	set ifilter 3 deny 0/0 0/0 tcp dst eq 138
	set ifilter 4 deny 0/0 0/0 udp dst eq 138
	set ifilter 5 deny 0/0 0/0 tcp dst eq 139
# permit other packets
	set ifilter 6 permit 0/0 0/0 estab
# RIP packets
	set ofilter 0 deny 0/0 0/0 udp dst eq 520
# SMB packets
	set ofilter 1 deny 0/0 0/0 tcp dst eq 137
	set ofilter 2 deny 0/0 0/0 udp dst eq 137
	set ofilter 3 deny 0/0 0/0 tcp dst eq 138
	set ofilter 4 deny 0/0 0/0 udp dst eq 138
	set ofilter 5 deny 0/0 0/0 tcp dst eq 139
# permit other packets 
	set ofilter 6 permit 0/0 0/0
# DNS packets from other machines
	set dfilter 0 deny 192.168.0.1/24 0/0 udp dst eq 53
# RIP packets
	set dfilter 1 deny 0/0 0/0 udp dst eq 520
# SMB packets
	set dfilter 2 deny 0/0 0/0 tcp dst eq 137
	set dfilter 3 deny 0/0 0/0 udp dst eq 137
	set dfilter 4 deny 0/0 0/0 tcp dst eq 138
	set dfilter 5 deny 0/0 0/0 udp dst eq 138
	set dfilter 6 deny 0/0 0/0 tcp dst eq 139
# permit other packets
	set dfilter 7 permit 0/0 0/0
# not keep alive by RIP packets
	set afilter 0 deny udp src eq 520
	set afilter 1 permit 0/0 0/0
# from Web browser closing
	set dfilter 8 deny tcp finrst
	set afilter 2 deny tcp syn
	set afilter 3 deny tcp finrst

------------------------------------------------------------
$B>.>>!!1QG7(J                         hkomatsu@bio.titech.ac.jp

MicroCassetteMan                   mychro@kw.NetLaputa.ne.jp
$BKh9u2>@aEOK|(J                          HXD08184@biglobe.ne.jp
                                    mychro@mth.biglobe.ne.jp
                         http://www.NetLaputa.ne.jp/~mychro/

