Home page logo
/

basics logo Security Basics mailing list archives

Re: firewall setup
From: Dave Dearinger <daved () mdon-line com>
Date: Wed, 07 Jul 2004 14:13:44 -0700

Packet Filter and DNS can be configured in openBSD to perform NAT operations based on "A fully qualified domain name that will be resolved via DNS when the ruleset is loaded" (http://openbsd.org/faq/pf/nat.html) All the man pages for PF can be accessed from http://www.openbsd.org/faq/pf/index.html
Yes it is possible and not terribly difficult. YMMV.


At 02:33 PM 7/7/2004 +0000, Ognen Duzlevski wrote:
Hi, I have a basic question:

we have several boxes with unique public IP addresses which are part of a big .edu namespace. I would like to put these machines behind one single firewall and still keep their names. Is it possible to have all names point to the firewall machine and then have the firewall direct the specific request to a specific box behind it?

So, if F is firewall.x.edu and I have A.x.edu, B.x.edu and C.x.edu I want to have A, B and C behind F. A, B and C should now point to F and F will direct all outside requests to A, B or C based on the name.

Thanks,
Ognen


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]