From owner-FreeBSD-users-jp@jp.freebsd.org  Mon Jan 11 22:05:07 1999
Received: (from daemon@localhost)
	by jaz.jp.freebsd.org (8.9.1+3.1W/8.7.3) id WAA03047;
	Mon, 11 Jan 1999 22:05:07 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from pis.toba-cmt.ac.jp (pis.toba-cmt.ac.jp [202.26.248.77])
	by jaz.jp.freebsd.org (8.9.1+3.1W/8.7.3) with ESMTP id WAA03030
	for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 11 Jan 1999 22:05:01 +0900 (JST)
	(envelope-from kiri@pis.toba-cmt.ac.jp)
Received: from localhost (localhost.pis [127.0.0.1])
	by pis.toba-cmt.ac.jp (8.9.1/8.8.8) with ESMTP id WAA18716
	for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 11 Jan 1999 22:17:45 +0900 (JST)
	(envelope-from kiri@pis.toba-cmt.ac.jp)
To: FreeBSD-users-jp@jp.freebsd.org
In-Reply-To: Your message of "Mon, 11 Jan 1999 18:21:33 +0900"
	<199901110921.SAA00424@maverick.riko.shimane-u.ac.jp>
References: <199901110921.SAA00424@maverick.riko.shimane-u.ac.jp>
X-Mailer: Mew version 1.93 on XEmacs 20.4 (Emerald)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Message-Id: <19990111221745X.kiri@pis.toba-cmt.ac.jp>
Date: Mon, 11 Jan 1999 22:17:45 +0900
From: KIRIYAMA Kazuhiko <kiri@pis.toba-cmt.ac.jp>
X-Dispatcher: imput version 980905(IM100)
Lines: 83
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+981115
X-Sequence: FreeBSD-users-jp 37308
Subject: [FreeBSD-users-jp 37308] Re: ping -R
 =?ISO-2022-JP?B?GyRCJE4lSCVpJVYlayRLJEQkJCRGGyhC?= 
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: kiri@pis.toba-cmt.ac.jp

$B6M;3(B $B$G$9!#(B

> $B:eK\!wEg:,Bg3X$G$9!#(B

$B$3$s$P$s$O!#(B

> $B6M;3$5$s!"$+$o$$$5$s!"$$$D$b!"$*@$OC$K$J$j$^$9!#(B

$B$3$A$i$3$=$I$&$b$G$9!#(B

> natd,ping$B$O!"$H$b$K(B2.2.8-R$B$KF~$C$F$$$?$b$N!"!J(B/usr/sbin/natd,/sbin/ping)
> $B$G$9!#!J%P!<%8%g%s$O$I$&$d$l$P$o$+$j$^$9$+!"(Bstrings$B$G$O$=$l$i$7$->pJs$O(B
> $BF@$i$l$^$;$s$G$7$?!K(B

$B$9$$$^$;$s$G$7$?!#3N$+$K%@%a$G$9$M!#(B

$B!t(B $B$7$P$i$/8+$J$$$&$A$K(B ftp://kn6-045.ktvlpr.inet.fi/pub/natd/ $B$OJD$8$i$l$F$$(B
$B!t(B $B$^$7$?!#(B 

> 2./etc/rc.conf$B$K(B
> firewall_enable="YES"           # Set to YES to enable firewall functionality
> firewall_type="natd"            # Firewall type (see /etc/rc.firewall)
> firewall_quiet="NO"             # Set to YES to suppress rule display
> 
> $B$H=q$-!"$5$i$K!"(B/etc/rc.firewall$B$N8e$m$NJ}$K(B
> 
> elif [ "${firewall_type}" = "natd" ]; then
>     # Set your device which you want to connect with natd.
>         nic="ed0"
>         echo "natd connected with ${nic}"
>         /usr/sbin/natd -interface ${nic}
>         $fwcmd add divert natd all from any to any via ${nic}
>         $fwcmd add pass all from any to any
> ###########
> 
> elif [ "${firewall_type}" != "UNKNOWN" -a -r "${firewall_type}" ]; then
>         $fwcmd ${firewall_type}
> fi
> 
> $B2C$($^$7$?!#!JKvHx(B3$B9T$NA0$KA^F~$7$?!K(B

$B$3$l$J$s$G$9$,!";d$O$$$D$b!V;XDj$5$l$?0LCV!W$K(B natd $B%9%/%j%W%H$rCV$/$H%H%i%V%k(B
$B$N$G(B rc.conf $B$N(B natd $B%*%W%7%g%s$O?.MQ$7$F$$$^$;$s!#(B

rc.conf:
~~~~~~~~
firewall_enable="NO"            # Set to YES to enable firewall functionality
firewall_type="UNKNOWN"         # Firewall type (see /etc/rc.firewall)
firewall_quiet="NO"             # Set to YES to suppress rule display
:
natd_enable="YES"               # Run natd, the NAT server (or NO).
natd="/usr/local/etc/natd.sh"   # Name of nating daemon to use if enabled.

rc.network:
~~~~~~~~~~~
    # Initialize IP filtering using ipfw
    echo ""
    /sbin/ipfw -q flush > /dev/null 2>&1
    if [ $? = 0 ] ; then
        firewall_in_kernel=1
    else 
        firewall_in_kernel=0
    fi

    # NAT setup 
    if [ "X$natd_enable" = X"YES" ]; then
        firewall_in_kernel=0
        ${natd} ${natd_flags}
    fi

$B$H$$$&$U$&$K(B ipfw $B$N=i4|2=$ND>8e$K(B natd $B$rF0$+$7$F$$$^$9!#5U$K$3$&$7$J$$$H40A4(B
$B$K!V%U%!%$%"%&%)!<%k$7$F$$$k!W>uBV$GFbIt$+$i30It$X(B DNS $B$J$I$NLd$$9g$o$;$r$7$?(B
$B$j$7$FN)$A>e$,$kESCf$GJQ$J%a%C%;!<%8$,=P$^$;$s$+!)(B

> $B$3$N>uBV$G!"FbIt$N(Bpc-9821Xa12$B$+$i30$K8~$+$C$FDL?.$G$-$F$$$^$9!#(B
> 
> $B8=:_$^$G$G!"J,$+$C$?$3$H$O!"$d$O$j!"$3$N(Bnatd$B$,$i$_$N$h$&$G!"(Bnatd$B$r(B
> $B5/F0$7$J$$>l9g$O!"FC$KLdBj$O$J$$$h$&$G$9!#(B

$B$H$3$m$G!"(Bdeny_incoming $B$O$I$N$h$&$K@_Dj$5$l$F$^$9!)(B
---
KIRIYAMA Kazuhiko
kiri@pis.toba-cmt.ac.jp
