first question
Odhiambo Washington
wash at wananchi.com
Sat Apr 29 19:36:52 UTC 2006
* On 29/04/06 07:58 -0700, steve lasiter wrote:
| I've used ipfilter and now have just loaded FreeBSD
| 6.1 with PF to configure for a gateway/firewall/router
| w/3 NICS for a new network the office. My topologoy:
|
| INTERNET
| |
| |
| --------|---------
| 66.190.186.13
| (EXT_NIC)
|
| GATEWAY/FIREWALL
|
| 10.0.0.0/24 ---switch----DMZ webserver
| (DMZ_NIC)
|
| 192.168.0.0/24
| (INT_NIC)
| --------|----------
| |
| |
| SBS 2003 box w/ISA
| |
| switch
| |
| LAN
|
| Questions:
| 1)I need to allow access on ports 25, 80 and 443 to
| the Small Business Server 2003 box for remote access
| but I want all non-office related traffic on ports 80
| and 443 to go to the dmz webserver. Can you give some
| insight on how I might route this using PF?
|
| 2)Can someone provide a good base set of rules that
| they have established for a similar topology?
|
| This should get me started. Thanks for all the input.
Please get started using the FAQ at the following link:
http://www.openbsd.org/faq/pf
At the end of the reading, you will see this example:
http://www.openbsd.org/faq/pf/example1.html
From there, after thorough reading, you will be able to craft rules that
will handle connections to your DMZ....
Sorry, if I did not turn out to be as helpful as you might have
expected.
-Wash
http://www.netmeister.org/news/learn2quote.html
DISCLAIMER: See http://www.wananchi.com/bms/terms.php
--
+======================================================================+
|\ _,,,---,,_ | Odhiambo Washington <wash at wananchi.com>
Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com
|,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922
'---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121
+======================================================================+
From a Tru64 patch description:
Fixes a bug that causes a panic due to software error
More information about the freebsd-pf
mailing list