From owner-FreeBSD-users-jp@jp.freebsd.org  Wed Aug 29 23:25:12 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id XAA70898;
	Wed, 29 Aug 2001 23:25:12 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from sahiro.homeip.net (p50-dna05sawada.niigata.ocn.ne.jp [211.122.195.178])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id XAA70893
	for <FreeBSD-users-jp@jp.freebsd.org>; Wed, 29 Aug 2001 23:25:11 +0900 (JST)
	(envelope-from sahiro@crest.ocn.ne.jp)
Date: Wed, 29 Aug 2001 23:24:33 +0900
From: SASAKI Katuhiro <sahiro@crest.ocn.ne.jp>
To: FreeBSD-users-jp@jp.freebsd.org
Message-ID: <3b8cfb1c.6347%sahiro@crest.ocn.ne.jp>
In-Reply-To: <20010829101440.A86127@pop16.odn.ne.jp>
References: <200108270838.AA04921@aquamarineN.nifty.com>
	<20010827195045.9807.KISAKA@toyosys.co.jp>
	<200108281120.UAA03831@Marble.QIX.ORG>
	<20010829101440.A86127@pop16.odn.ne.jp>
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-2022-JP
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+010328
X-Sequence: FreeBSD-users-jp 63904
Subject: [FreeBSD-users-jp 63904] Re: =?ISO-2022-JP?B?GyRCQEVFKhsoQg==?=
 Masquarade =?ISO-2022-JP?B?GyRCJE48Qjg9Sn1LIRsoQg==?= 
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: sahiro@crest.ocn.ne.jp

$B!!$5$5$-$H?=$7$^$9!#(B


IWASHITA Yoji$B$5$^$N(B<20010829101440.A86127@pop16.odn.ne.jp>$B$+$i(B
>$B$G$b!"(Bppp (PPPoE$B@\B3(B) + natd + ipfw $B$NOCBj$O$"$s$^$jL5$+$C$?5$$,$7$^$9!#(B
>
$B!!$^!"(Bppp(not PPPoE)+ipfw+natd$B$K$D$$$F$G$"$l$P%I%-%e%a%s%H$b7k9=(B
$BB7$C$F$^$9$N$G!"(BPPPoE$B4D6-$G$NCm0U;v9`$r5-$7$?J8>O$,$"$l$P$=$l$G(B
OK$B$N$h$&$K$b;W$$$^$9$,!#(B
$B!t$o$?$7$N$H$3$m$G$O(Bppp($BHs(BPPPoE$B!#$H$$$&$+!"(BADSL$B$,Mh$F$$$^$;$s$N(B
$B!t$G!D!D!#(B)+ipfw+natd$B$rMxMQ$7$F$$$^$9$,!"7k9=2wE,$G$9!#(B

>$B$&!<$s!":G8e$K$3$l(B (add allow ip from any to any) $B$rF~$l$l$P$$$$$N$+!#(B
>$BD>A0$K(B tcp $B$r5qH]$9$k$h$&$K$7$F$*$1$P<BMQ>e$OLdBjL5$5$=$&$J$s$G$9$M!#(B
>
>ipfw $B$GIaDL$K!V5v2D$7$?$b$N0J30$O86B'6X;_!W$K$9$k$H!"(BPPPoE $B$N@\B3MQ%Q(B
>$B%1%C%H$^$GDL$i$J$/$J$C$A$c$C$F!"(Bppp (PPPoE) + natd + ipfw $B$NAH9g$;$O$"(B
>$B$s$^$j;H$($J$$$J!A$H;W$C$F$^$7$?!#(B
>
>$B@\B3MQ%Q%1%C%H$O(B tcp $B$G$b(B udp $B$G$b(B icmp $B$G$b$J$$$N$G!"(Bipfw $B$G$3$l$@$1(B
>$B$rFCJL$K5v2D$9$k$C$F;v$,(B($BB?J,(B)$B=PMh$J$$$N$G!"$O$^$C$??M$O7k9=$$$k$h$&$J(B
>$B5$$,$7$^$9!#(B
>
$B!!$G!"$3$3$NItJ,$J$s$G$9$,!"Nc$($P(Bbridge(4)$B$N(B
>Note that ipfw(8) rules only apply to IP packets. Non-IP 
>packets are subject to the default ipfw(8) rule (number 65535) 
>which must be an allow rule if ARP and other non-IP packets 
>need to flow through the bridge.
$B$J$I$N5-=R$rFI$s$@8B$j$G$O!"Hs(BIP$B$N%Q%1%C%H$rDL$9$K$O(B
add allow ip from any to any
$B$G$OBLL\$G(B
IPFIREWALL_DEFAULT_TO_ACCEPT
$B$rM-8z$K$7$?%+!<%M%k(B($B$"$k$$$O%b%8%e!<%k(B)$B$,I,MW$K$J$k$h$&$K;W$($k(B
$B$N$G$9$,!"$=$NJU$j$O$I$&$J$N$G$7$g$&$+!)!!$b$7(B
add allow ip from any to any
$B$N5-=R$GB-$j$k$N$G$"$l$P!"%I%-%e%a%s%H$N=$@5$,I,MW$K$J$k$G$7$g$&(B
$B$7!#(B


$B!!$=$l$G$O<:Ni$$$?$7$^$9!#(B


================================================================
                       SASAKI Katuhiro

                mailto: sahiro@crest.ocn.ne.jp
================================================================
