From owner-FreeBSD-users-jp@jp.FreeBSD.org Mon Oct 18 13:30:04 2010
Received: (from daemon@localhost)
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) id o9I4U4Z75933;
	Mon, 18 Oct 2010 13:30:04 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from ts1.inter7.jp (220x218x138x50.ap220.ftth.ucom.ne.jp [220.218.138.50])
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) with SMTP/inet id o9I4U3D75928
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Mon, 18 Oct 2010 13:30:03 +0900 (JST)
	(envelope-from nana0773@inter7.jp)
Received: (qmail 23538 invoked by uid 507); 18 Oct 2010 13:29:58 +0900
Message-ID: <20101018042958.23532.qmail@ts1.inter7.jp>
To: FreeBSD-users-jp@jp.FreeBSD.org
MIME-Version: 1.0
Content-Type: text/plain; charset="ISO-2022-JP"
Content-Transfer-Encoding: 7bit
X-Mailer: Webmail-inter7
X-Priority: 3
From: nana0773 <nana0773@inter7.jp>
Reply-To: FreeBSD-users-jp@jp.FreeBSD.org
Precedence: list
Date: 18 Oct 2010 13:29:58 +0900
X-Sequence: FreeBSD-users-jp 93239
Subject: [FreeBSD-users-jp 93239] =?ISO-2022-JP?B?GyRCJDMkcyRLJEEbKEI=?=
 =?ISO-2022-JP?B?GyRCJG8hIztkJGIbKEI=?= ipnat
 =?ISO-2022-JP?B?GyRCJEc6JCRDJEYkJCReJDkhIxsoQg==?=
Sender: owner-FreeBSD-users-jp@jp.FreeBSD.org
X-Originator: nana0773@inter7.jp
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+060209

$B$3$s$K$A$o(B

FreeBSD 6.2-p2(i386)$B"*(BFreeBSD 8.1-p1(amd64)$B$K(B
$B$[$\%/%j!<%s%$%s%9%H!<%k>uBV$G%"%C%W%0%l!<%I$r(B
$B$7$F$$$k$N$G$9$,!"(B
ipf$B$N(Bipf.rules$B$,%(%i!<$K$J$C$?$j!"(Bipnat$B$N(Bipnat.rules$B$K(B
$B0[>o$,$J$$$K$b4X$o$i$:!"(Bnat$B$r$7$F$/$l$J$/$F:$$C$F$$$^$9!#(B
$B0JA0$N(BFreeBSD 6.2-p2$B$G$O@5>o$K(Bipnat$B$,(Bnat$BF0:n$r$7$F$/$l$^$7$?!#(B

mpd3$B$+$i(Bmpd5$B$X$N0\9T$OK?Bg5,LO7G<(HD$N%F%s%W%l!<%H$G(B
$B$J$s$H$+7R$,$C$?$N$G$9$,!"(B
nat$B$@$1$,$I$&$7$F$bF0:n$7$F$/$l$^$;$s!#(B

$B:#$O(Bipf$B$O!"$9$0$K$O$$$$$H$7$F$b!"(Bipnat$B$r2r7h$7$?$$$N$G(B
$B$h$m$7$/$*4j$$$7$^$9!#(B

$B$A$J$_$K(BNTT$BElF|K\$N(BB$B%U%l%C%D$G!"(Bmpd5$B$K$*$$$F$b(B
mtu$B5Z$S(Bmru$B$,(B1454$B$G@\B3$G$-!"(B
w3m$B$G!"LdBj$N%k!<%?!<$+$i(BYahoo$B$r%V%i%&%8%s%0$G$-$^$7$?!#(B

$B%+!<%M%k$N(Bconfig$B$O!"0JA0(B6.2$B$G;HMQ$7$F$$$?$b$N$r(B
$B$[$\$=$N$^$^DI2C$7$F$$$^$9!#(B
----------
options IPDIVERT
options NETGRAPH
options NETGRAPH_ETHER
options NETGRAPH_PPPOE
options NETGRAPH_SOCKET

options IPFILTER
#options IPFILTER_LOG
#options IPFILTER_DEFAULT_BLOCK # ipf$B$,2r7h$7$J$$$N$G$3$l$G:F%S%k%I(B
options DUMMYNET
----------
/etc/ipf.rules

pass in quick all
pass out quick all

#$B$=$NB>!"8=>u$G$9$Y$F%3%a%s%H%"%&%H!(!((B
----------
/etc/ipnat.rules

map ng0 192.168.1.0/24 -> $B8GDj(BIP/32 proxy port ftp ftp/tcp mssclamp 1414
map ng0 192.168.1.0/24 -> $B8GDj(BIP/32 portmap tcp/udp auto mssclamp 1414
map ng0 192.168.1.0/24 -> $B8GDj(BIP/32 mssclamp 1414

map ng0 $B8GDj(BIP/32 -> $B8GDj(BIP/32 portmap tcp/udp auto mssclamp 1414
map ng0 $B8GDj(BIP/32 -> $B8GDj(BIP/32 mssclamp 1414

----------
$B%M%C%H%o!<%/9=@.$O0J2<$N$H$*$j$G$9!#(B

ONU
$B"-(B
HUB$B"*(B(WAN)$B$R$+$jEEOC%k!<%?!<(B
$B"-(B $B"+"-(B(LAN)
$B"-"*$3$N(BPC(Windows 7/XP)$B$N%*%s%\!<%I(BLAN$BC<;R!J(BIP$B3dIU$J$7!K(B
$B"-(B
$B:#$NLdBj$N%k!<%?!<$K$7$h$&$H$7$F$$$k(BFreeBSD(mpd/mail/web)
$B"-(B
HUB
$B"-"*$3$N(BPC(Windows 7/XP)$B$N(Bem0$BAjEv%G%P%$%9(B
$B"-"*%U%!%$%k%5!<%P!<!J(BFreeBSD 8.1/amd64 em0)
$B"-"*%N!<%H%Q%=%3%s!J(Brl0$B%G%P%$%9AjEv(B)

----------
$B;29M$^$G$K!"(B/usr/local/etc/mpd5/mpd.conf $B$O(B

default: 
load PPPoE_$B%W%m%P%$%@(B 
PPPoE_$B%W%m%P%$%@(B: 
create bundle template $B%W%m%P%$%@(B 
set iface route default 
set ipcp ranges 0.0.0.0/0 0.0.0.0/0 
set iface up-script /usr/local/etc/mpd5/$B%W%m%P%$%@(B.sh 
set iface down-script /usr/local/etc/mpd5/$B%W%m%P%$%@(B.sh
set iface mtu 1454 
set iface enable tcpmssfix 
set iface idle 0 

create link $B%W%m%P%$%@(B-link pppoe 
set auth authname userid@$B%W%m%P%$%@(B.ne.jp 
set auth password $B%Q%9%o!<%I(B
set link action bundle $B%W%m%P%$%@(B
set link no acfcomp protocomp 
set link disable pap chap 
set link accept chap 
set link mtu 1454 
set link mru 1454 
set link keep-alive 10 60 

set pppoe iface em0
set pppoe service "" 
open 

$B$3$l$G!"$-$A$s$H!"(Bng0$B%$%s%?!<%U%'%$%9$K@\B3$G$-$^$9!#(B
----------

$B0J>e!"$h$m$7$/$*4j$$$7$^$9!#(B

$B$J$J(B <nana0773@inter7.jp>


