From owner-FreeBSD-users-jp@jp.freebsd.org  Wed Jan  3 23:08:55 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id XAA72100;
	Wed, 3 Jan 2001 23:08:55 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from mailgw.cablecom.ne.jp (mailgw.cablecom.ne.jp [202.248.199.37])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id XAA72093
	for <FreeBSD-users-jp@jp.freebsd.org>; Wed, 3 Jan 2001 23:08:54 +0900 (JST)
	(envelope-from hiroo@oikumene.gcd.org)
Received: from srv2.cablecom.ne.jp by mailgw.cablecom.ne.jp (8.9.3/3.7W) id XAA06056; Wed, 3 Jan 2001 23:08:53 +0900 (JST)
Received: from chrysanthe.oikumene.gcd.org by srv2.cablecom.ne.jp (8.9.3/3.7W) id XAA24713; Wed, 3 Jan 2001 23:08:42 +0900 (JST)
Received: (qmail 64345 invoked from network); 3 Jan 2001 14:09:48 -0000
Received: from chrysanthe.oikumene.gcd.org (HELO localhost) (192.168.0.12)
  by chrysanthe.oikumene.gcd.org with SMTP; 3 Jan 2001 14:09:48 -0000
To: FreeBSD-users-jp@jp.freebsd.org
From: Hiroo ONO (=?iso-2022-jp?B?GyRCPi5MbjQyQDgbKEI=?=)
 <hiroo@oikumene.gcd.org>
In-Reply-To: <20010103150723L.hiromi@tac.tsukuba.ac.jp>
References: <200101021751.CAA23403@mail.geocities.co.jp>
	<20010103150723L.hiromi@tac.tsukuba.ac.jp>
X-Mailer: Mew version 1.94.1 on Emacs 20.7 / Mule 4.0 (HANANOEN)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Message-Id: <20010103230947D.hiroo@oikumene.gcd.org>
Date: Wed, 03 Jan 2001 23:09:47 +0900
X-Dispatcher: imput version 20000228(IM140)
Lines: 26
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+000315
X-Sequence: FreeBSD-users-jp 57985
Subject: [FreeBSD-users-jp 57985] Re: IPFW or IP Filter ?
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: hiroo@oikumene.gcd.org

$B>.Ln42@8$G$9(B
% $B5lG/$"$1$^$7$F$*$a$G$H$&$4$6$$$^$9!#(B

From: Hiromi Kimura <hiromi@tac.tsukuba.ac.jp>
Date: Wed, 03 Jan 2001 15:07:23 +0900

> $B=i?4<T8~$1$NEz$(!V$I$A$i$bM-8z!W!#(B
> NAT $B$r;H$&$J$i(B IP Filter$B!JJQ49%F!<%V%k$,%b%K%?$G$-$k$+$i!K!#(B

4.0-STABLE (2000/07) $B$H(B 4.2-STABLE (2001/01/01) $B$N4V$N$I$3$+$G!"(B
rc.conf $B$K(B

ipnat_enable="NO"		# Set to YES for ipnat; needs ipfilter, too!
ipnat_program="/sbin/ipnat -CF -f" # program and how to specify rules file
ipnat_rules="/etc/ipnat.rules"	# rules definition file for ipnat
ipnat_flags=""			# additional flags for ipnat

$B$H$$$&%(%s%H%j$,EP>l$7$F$$$^$9!#(B
NAT $B$r9T$J$&>l9g$O!"(Bipfilter $B$H9g$o$;$F$3$l$r;H$&$h$&$G$9!#(B

ipnat $B$N(B manpage $B$r>/$7FI$s$G$_$?$H$3$m!"$?$^$K(B net-jp $B$"$?$j$K$G$F$/(B
$B$k!"J#?t$N(B interface $B7PM3$GF1$8(B network $B$K@\B3$7$F!"N><T$K(B packet $B$r?6(B
$B$jJ,$1$?$$$H$$$&$3$H$b$G$-$k$N$+$J$H$$$&46$8$G$7$?!#(B

natd+ipfw $B$G(B NAT $B$r<B8=$7$F$7$^$$!"$[$+$K$^$@$d$k$3$H$,$"$k$N$G;n$7$F(B
$B$O$$$^$;$s!#(B
