Date: 02-09-00 15:13
Current system: -
FreeBSD 3.1-release on a P120 with 2 500 MB drives, acting as a small proxy server for an internal home network.
Two NICs, ed0 and ed2. ed0 is connected to my internal fake domain, 10.0.0.0/24 network. ed2 was installed to create a crossing between ed0 and ed2 which would be firewalled (dual homed, so I believed).
I currently use ppp to dial and connect to my ISP. I require an HTTP proxy (Squid) port 3128 and 1080, IRC and FTP direct access (149 and 20/21 I believe). The problem is, I do not understand how to route between ed0, ed2 and ppp. Here is the picture: -
internal system request --> 10.0.0.1 (this box) ed0 --> 220.127.116.11 ed2 --> ppp ---> ISP.
I have configured the machine to be a gateway, and will firewall packets flowing between ed0 and ed2; is this a good idea or should I simply disregard ed2 and use ed0 and ppp, and firewall connections between those? - I cannot figure out how to firewall connections between ppp and ed0, since the "oif" settings require an IP address - an IP which is assigned to me on dialing with ppp.
Please note - Squid and ppp worked fine by themselves, using ed0 and ppp only, with the "add default HISADDR" option in ppp.conf.
How should I approach this situation? - all you hardened money-earners seem to have dedicated internet connections, and most of the documents available seem to reflect this.
Cheers all in advance.