|
Author: Joe
Date: 09-03-01 14:33
Hi, i set up my network on my freebsd box, and i used nat so my win2kbox will go on the internet aswell. But on my win2kbox i can use ICQ, mIRC, napster, telnet, ftp etc but i can't view any websites or can i use outlook express.
due for some reason when i use NAT.
if you know how i can fix this problem then please reply to this link.
Joe
|
|
Reply To This Message
|
|
Author: Spud
Date: 12-03-01 23:17
1)
If you're using IP Filter, make sure that your IPF.rules (or ipf.conf) file is set up to allow free outbound traffic, keeping state, while implementing a deny all policy coming in. This will keep unwanted traffic out, while allowing traffing in that you initiated from the inside. There are 3 major protocols, hence 3 lines to add:
pass out quick on ep1 proto tcp from any to any Flags S keep state
pass out quick on ep1 proto udp from any to any keep state
pass out quick on ep1 proto icmp from any to any keep state
where: ep1 is the outbound NIC
2)
If you wish to block incoming PINGs, add this line at the top:
block in quick on ep1 proto icmp from any to any
where: ep1 is the outbound NIC
|
|
Reply To This Message
|
|
