Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

ipfw+nat statefull rules ?

From: Drahma Drahma <ddrahma () yahoo com>
Date: Thu, 14 Mar 2002 10:40:26 -0800 (PST)


Hello everyone!

im new :P


i'd like to ask if anyone know more simple way to make
rules
with ipfw for nated systems.

        ipfw with nat under freebsd

sample 1.

        56.12.1.1/32 [lnc0]<- firewall ->[lnc1] 10.1.1.1/32
alias   56.12.1.2/32                       |10.1.1.0/24
                                         [le1]  10.1.1.2/32 [SSH]

                NAT 1:1 56.12.1.2 : 10.1.1.12

allow check-state
allow tcp from any to 10.1.1.1 25 keep-state in recv
lnc0
allow tcp from 56.12.1.2 25 to any keep-state out xmit
lnc0

it mey be something like this 2 in 1 ? :)?
1 ?
allow tcp from any to 10.1.1.2/32 22 in setup out via
56.12.1.2
2 ?
allow tcp from any to 10.1.1.2/32 22 keep-state in
setup

its it possible to make statefull rules with nat ?


ddrahma () yahoo com



__________________________________________________
Do You Yahoo!?
Yahoo! Sports - live college hoops coverage
http://sports.yahoo.com/
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: