From owner-FreeBSD-users-jp@jp.FreeBSD.org Fri Aug 19 15:45:33 2005
Received: (from daemon@localhost)
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) id j7J6jXV80075;
	Fri, 19 Aug 2005 15:45:33 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from ramiel.nerv.org (b149059.ppp.asahi-net.or.jp [202.213.149.59])
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) with SMTP/inet id j7J6jWI80070
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Fri, 19 Aug 2005 15:45:32 +0900 (JST)
	(envelope-from you@dearest.net)
Received: (qmail 21482 invoked from network); 19 Aug 2005 15:45:31 +0900
Received: from localhost (HELO auxo.dearest.net) (127.0.0.1)
  by localhost with SMTP; 19 Aug 2005 15:45:31 +0900
Received: from localhost (localhost [IPv6:::1])
	by auxo.dearest.net (Postfix) with ESMTP id 3337E91223
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Fri, 19 Aug 2005 15:45:31 +0900 (JST)
Message-Id: <20050819.154531.102505060.you@auxo.dearest.net>
To: FreeBSD-users-jp@jp.FreeBSD.org
From: Yu Oasa <you@dearest.net>
In-Reply-To: <20050819053643.85868.qmail@web3110.mail.bbt.yahoo.co.jp>
References: <20050819053643.85868.qmail@web3110.mail.bbt.yahoo.co.jp>
X-Mailer: Mew version 3.3 on Emacs 21.3 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Reply-To: FreeBSD-users-jp@jp.FreeBSD.org
Precedence: list
Date: Fri, 19 Aug 2005 15:45:31 +0900
X-Sequence: FreeBSD-users-jp 86672
Subject: [FreeBSD-users-jp 86672] Re: IPfilter
 =?ISO-2022-JP?B?GyRCRmIkSyQqJCQkRiROGyhC?= DMZ
 =?ISO-2022-JP?B?GyRCQF9EaiRLJEQkJCRGGyhC?=
Sender: owner-FreeBSD-users-jp@jp.FreeBSD.org
X-Originator: you@dearest.net
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+050320

Fri, 19 Aug 2005 14:36:43 +0900
	$BCf@n(B <pc_unix777@yahoo.co.jp> said:
>IPfilter$B$r%G%U%)%k%H$G%V%m%C%/$7$?%+!<%M%k9=C[@_Dj;~$K$*(B
>$B$$$F!"FbIt(BLAN$BFb%W%i%$%Y!<%H%"%I%l%9!"(B192.168.0.10$B!J(BP2P$B$r(B
>$B;HMQ!K$N(B12345$B%]!<%H$N%5!<%S%9$@$1$ODL$7$?$/;W$&$o$1$G$9(B
>$B$1$I$NMM$K@_Dj$9$l$P59$7$$$G$9$+!)(B

$B$d$C$F$_$F$&$^$/$$$+$J$+$C$?Nc$rDs<($7$F$b$i$C$?$[$&$,(B
$BAa$$$H;W$$$^$9$,!D(B $B$3$3$O0l$+$i%F%#!<%A%s%0$9$k>l=j(B?

incoming tcp/12345 $B$rDL$7$?$$$J$i$P$3$s$J46$8$G$7$g$&$+!#(B
$BA0$N%a!<%k$rFI$s$G$^$;$s$N$G!"4D6-$H$+$o$+$j$^$;$s$,!#(B
($B0lHLE*$J(B block $B%k!<%k$d!"(Budp$BEy$K$D$$$F$O>JN,(B)

pass in quick proto tcp from any to any port = 12345 flags S keep state keep frags
(block in all)

pass out quick proto tcp all flags S keep state keep frags
(block out all)


>PS:$B$R$g$C$H$7$F(BIPNAT$B$N@_Dj$,4V0c$C$F$$$k$N$+$J!&!&!&!#(B

$B$H;W$C$?$i!"$=$A$i$bDs<($7$?$[$&$,$h$$$H;W$$$^$9!#(B

--
Yu Oasa  E-mail: you@dearest.net
