From owner-FreeBSD-users-jp@jp.freebsd.org  Mon Apr 21 02:17:45 1997
Received: by jaz.jp.freebsd.org (8.8.5+2.7Wbeta5/8.7.3) id CAA26377
	Mon, 21 Apr 1997 02:17:45 +0900 (JST)
Received: by jaz.jp.freebsd.org (8.8.5+2.7Wbeta5/8.7.3) with ESMTP id CAA26371
	for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 21 Apr 1997 02:17:44 +0900 (JST)
Received: by uno.sat.t.u-tokyo.ac.jp (8.8.5/8.7.3) with ESMTP
	id CAA17054; Mon, 21 Apr 1997 02:17:43 +0900 (JST)
To: FreeBSD-users-jp@jp.freebsd.org
In-Reply-To: Your message of "Sun, 20 Apr 1997 23:18:23 +0900"
References: <199704201418.XAA03425@lavender.sanpei.org>
X-Mailer: Mew version 1.69 on Emacs 19.28.1 / Mule 2.3
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Date: Mon, 21 Apr 1997 02:17:43 +0900
Message-ID: <17052.861556663@sat.t.u-tokyo.ac.jp>
From: Hidetoshi Shimokawa <simokawa@sat.t.u-tokyo.ac.jp>
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: bulk
X-Distribute: distribute [version 2.1 (Alpha) patchlevel=19]
X-Sequence: FreeBSD-users-jp 11955
Subject: [FreeBSD-users-jp 11955] Re: [Q] IP-filter on FreeBSD 2.1.5
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org

$B2<@n!wElBg$G$9(B.

$BOC$NN.$l$r$*$$$-$l$F$$$J$$$7(B, ipfilter$B$r;H$C$F$_$?$N$O(B,$B$b$&(B
1,2$B%v7nA0$J$N$G$A$g$C$H30$7$F$$$k$+$b$7$l$^$;$s$,(B...

From: MIHIRA "Sanpei" Yoshiro <sanpei@yy.cs.keio.ac.jp>
Subject: [FreeBSD-users-jp 11950] Re: [Q] IP-filter on FreeBSD 2.1.5
Date: Sun, 20 Apr 1997 23:18:23 +0900
Message-ID: <199704201418.XAA03425@lavender.sanpei.org>

sanpei> >rdr $B$O(Bip_filter$B$N(B ipnat $B$N%3%^%s%I(B(?)$B$N$3$H$G$9!#(B
sanpei> >3.1.10$B$N(Brule/examle.nat$B$NCf$K(B
sanpei> >
sanpei> ># Redirection is triggered for input packets.
sanpei> ># For example, to redirect FTP connections through this box, to the local ftp
sanpei> ># port, forcing them to connect through a proxy, you would use:
sanpei> >#
sanpei> >rdr ed0 0.0.0.0/0 port ftp -> 127.0.0.1 port ftp
sanpei> >#
sanpei> >$B!J$?$@$7!"(Bed0 $B$OF~NO%Q%1%C%HB&$N%I%i%$%PL>!K(B
sanpei> >$B$H$$$&Nc$,:\$C$F$$$^$9!#(B
sanpei> >$B$3$N(Brdr$B$H(Bproxy$B$rAH$_9g$o$;$k$H(Bpassive$B$G$J$$(Bftp$B$,$G$-$k$H9M$($?M}M3$G$9!#(B
sanpei> 
sanpei>   $B;d$O(B, map $B$7$+;H$C$F$$$J$$$N$G$A$g$C$H$o$+$j$^$;$s(B ^^;
sanpei> 
sanpei>   $B$G$-$k$h$&$J5$$b$9$k$7(B, $B7k6I(B proxy $BBP1~$J(B ftp client $B$,I,MW$J5$$b(B
sanpei> $B$7$^$9(B.

$B$?$7$+(B, ipfilter$B$N(Bdistribution$B$K$bF~$C$F$$$?$H;W$$$^$9$,(B,
TIS$B$N(BFirewall Tool Kit$B$N(Bftp proxy$B$K(Bpatch$B$r$"$F$k$3$H$K$h$C$F(B,
rdr$B$HAH$_9g$o$;$F(B, proxy$B$G$"$k$3$H$r0U<1$;$:$K;HMQ$9$k$3$H$,$G$-$^$9(B.
$B!t$D$^$j(B, proxy$BBP1~$G$J$$(Bftp client$B$G$bBg>fIW$J$O$:(B.

$B$G$b(B, $B$9$J$*$K(Bpatch$B$rEv$F$?$@$1$G$O(B, $B$=$N5!G=$O(Bdisable$B$K$J$C$F$$$F(B,
1$B9T0L=q$-$+$($J$1$l$P$J$i$J$+$C$?$h$&$J5-21$,$"$j$^$9(B.

$B$U$D$&$N(Bftp$B$N(Bproxy$B$O(B, connect$B$7$?$"$H$K2?=h$K@\B3$9$k$+$r(Bproxy$B$K(B
$BEA$($kI,MW$,$"$j$^$9$,(B, ipfilter$B$,F0$$$F$$$k(Bmachine$B$@$H(Bkernel$B$KLd$$9g(B
$B$;$r$7$F(B, $B$I$3$K8~$1$i$l$?(Bpacket$B$,(B(redirect$B$5$l$F$-$?(B)$B$N$+$rD4$Y$F(B, $B$=(B
$B$N(Bftp server$B$K(Bconnect$B$9$k$h$&$J;E3]$@$C$?$H;W$$$^$9(B.

/\ Hidetoshi Shimokawa
\/  simokawa@sat.t.u-tokyo.ac.jp
PGP public key: finger -l simokawa@sat.t.u-tokyo.ac.jp
