Yes, a firewall. This machine IS the inner side of a firewall -- I want
to stop any unwanted traffic that gets through the outer firewall.
orville.
On Sun, 20 May 2001, Nick Rogness wrote:
> On Sat, 19 May 2001, Orville R. Weyrich.Jr wrote:
>
> > I have a dual homed FreeBSD-4.3 machine and want to restrict traffic
> > on one interface but not the other (one interface is to a trusted
> > network and the other is not).
> >
>
> > What I want is the untrusted interface to only present SMTP and HTTP
> > ports, while the trusted interface presents telnet, ftp, NFS, SMB,
> > etc.
>
> >
> > What is the best way to do this? The machine does NOT have IP
> > forwarding enabled.
>
> Run a firewall to block traffic on that interface. You can search
> the archives or the web for more information. See also ipfw man
> page.
>
> Of course, there are other ways to do this, but firewalling is
> probably best suited for this task.
>
> Nick Rogness <[EMAIL PROTECTED]>
> - Keep on Routing in a Free World...
> "FreeBSD: The Power to Serve!"
>
>
> To Unsubscribe: send mail to [EMAIL PROTECTED]
> with "unsubscribe freebsd-net" in the body of the message
>
===================================================================
IF YOU WANT REFORM >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> VOTE REFORM
-------------------------------------------------------------------
Orville R. Weyrich, Jr. Weyrich Computer Consulting
mailto:[EMAIL PROTECTED] KD7HJV http://www.weyrich.com
-------------------------------------------------------------------
Visit our online collection of book reviews:
http://www.weyrich.com/book_reviews/
Ask about our world wide web services!
-------------------------------------------------------------------
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-net" in the body of the message
