OpenForum RSS: �� natd

�� natd (DN)

Mon, 12 Nov 2007 14:10:07 GMT

>��.. �� .. �ӣ ��

�� ipfw ��
${fwcmd} add 64900 deny log ip from any to any

�� divert .

�� natd (rdsden)

Mon, 12 Nov 2007 13:54:26 GMT

��.. �� .. �ӣ ��

�� natd (rdsden)

Mon, 12 Nov 2007 11:44:39 GMT

�� :) ��

�� natd (DN)

Mon, 12 Nov 2007 10:34:01 GMT

>inet="192.168.2.0/24"
>iip="192.168.2.99"
>
># drop old rules
>${fwcmd} -f flush
>
># local trafic
>${fwcmd} add 100 pass all from any to any via lo0
>${fwcmd} add 200 deny all from any to 127.0.0.0/8
>${fwcmd} add 300 deny ip from 127.0.0.0/8 to any

${fwcmd} add 400 divert natd ip from any to any via ${oif}

># ICQ
>${fwcmd} add 6100 allow tcp from any to any 5190
>${fwcmd} add 6200 allow tcp from any 5190 to any
>
># pptp
>${fwcmd} add 7100 allow tcp from any to me 1723
>${fwcmd} add 7200 allow tcp from me 1723 to any
>
>${fwcmd} add 65000 allow ip from any to any

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
:-) �� .

${fwcmd} add 64900 deny log ip from any to any

�� natd �� -unregistered_only

�� natd (rdsden)

Mon, 12 Nov 2007 10:22:03 GMT

>
>�� ?
>��, � �� ipfw .

�� :

[code][Mm][Yy]
# variable
fwcmd="/sbin/ipfw -q"

# internet interface
oif="rl1"
onet="192.168.1.0/30"
oip="192.168.1.2"

# localnet interface
iif="rl0"
inet="192.168.2.0/24"
iip="192.168.2.99"

# drop old rules
${fwcmd} -f flush

# local trafic
${fwcmd} add 50 divert natd ip from any to any via ${oif}
${fwcmd} add 100 pass all from any to any via lo0
${fwcmd} add 200 deny all from any to 127.0.0.0/8
${fwcmd} add 300 deny ip from 127.0.0.0/8 to any

# RDP
${fwcmd} add 500 allow tcp from any to any 3389
${fwcmd} add 600 allow tcp from any 3389 to any

# ICMP
${fwcmd} add 1100 deny icmp from any to any in icmptype 5,9,13,14,15,16,17
${fwcmd} add 1200 allow icmp from any to any

# SSH
${fwcmd} add 2100 allow tcp from ${inet} to me 22
${fwcmd} add 2200 allow tcp from me 22 to ${inet}

# DNS
${fwcmd} add 3100 allow udp from any to any 53
${fwcmd} add 320

�� natd (DN)

Mon, 12 Nov 2007 09:32:24 GMT

>>�� ?
>
>� �� , �� natd.conf, ��
>�� NAT, � �� .
>�� IPFW ��.

�� ?
��, � �� ipfw .

�� natd (rdsden)

Sun, 11 Nov 2007 11:09:49 GMT

>�� ipfw & natd ,
>��
>�� ipfw .
>�� natd_flags="-f /etc/natd.conf" :
>log yes
>�� , �� . ��
>.
>�� ?

� �� , �� natd.conf, �� NAT, � �� . �� IPFW ��.

�� natd (DN)

Sat, 10 Nov 2007 12:38:32 GMT

>� �� NAT, � �� , ��
>�� natd_flags="" �� , �� ,
>�� , � �� , �� NAT ��
>��...
>�� : natd_flags="-f /etc/natd.conf"
>
>�� /etc/natd.conf �� :
>log yes

�� ipfw & natd , ��
�� ipfw .
�� natd_flags="-f /etc/natd.conf" :
log yes
�� , �� . �� .
�� ?

OpenForum RSS: ���������������� ���� natd

���������������� ���� natd (DN)

���������������� ���� natd (rdsden)

���������������� ���� natd (rdsden)

���������������� ���� natd (DN)

���������������� ���� natd (rdsden)

���������������� ���� natd (DN)

���������������� ���� natd (rdsden)

���������������� ���� natd (DN)

OpenForum RSS: �� natd

�� natd (DN)

�� natd (rdsden)

�� natd (rdsden)

�� natd (DN)

�� natd (rdsden)

�� natd (DN)

�� natd (rdsden)

�� natd (DN)