Security Basics: Re: firewall setup

Nmap Security Scanner
- Intro
- Ref Guide
- Install Guide
- Download
- Changelog
- Book
- Docs
Security Lists
- Nmap Hackers
- Nmap Dev
- Bugtraq
- Full Disclosure
- Pen Test
- Basics
- More
Security Tools
Site News
Advertising
About/Contact
Sponsors:

Security Basics mailing list archives

Re: firewall setup

From: Dave Dearinger <daved () mdon-line com>
Date: Wed, 07 Jul 2004 14:13:44 -0700

Packet Filter and DNS can be configured in openBSD to perform NAToperations based on "A fully qualified domain name that will be resolvedvia DNS when the ruleset is loaded" (http://openbsd.org/faq/pf/nat.html)All the man pages for PF can be accessed fromhttp://www.openbsd.org/faq/pf/index.html

Yes it is possible and not terribly difficult. YMMV.


At 02:33 PM 7/7/2004 +0000, Ognen Duzlevski wrote:

Hi, I have a basic question:
we have several boxes with unique public IP addresses which are part of abig .edu namespace. I would like to put these machines behind one singlefirewall and still keep their names. Is it possible to have all namespoint to the firewall machine and then have the firewall direct thespecific request to a specific box behind it?
So, if F is firewall.x.edu and I have A.x.edu, B.x.edu and C.x.edu I wantto have A, B and C behind F. A, B and C should now point to F and F willdirect all outside requests to A, B or C based on the name.
Thanks,
Ognen


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 offany course! All of our class sizes are guaranteed to be 10 students orless to facilitate one-on-one interaction with one of our expertinstructors. Attend a course taught by an expert instructor with years ofin-the-field pen testing experience in our state of the art hacking lab.Master the skills of an Ethical Hacker to better assess the security ofyour organization. Visit us at:http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------



---------------------------------------------------------------------------

Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 offany course! All of our class sizes are guaranteed to be 10 students or lessto facilitate one-on-one interaction with one of our expert instructors.Attend a course taught by an expert instructor with years of in-the-fieldpen testing experience in our state of the art hacking lab. Master the skillsof an Ethical Hacker to better assess the security of your organization.Visit us at:http://www.infosecinstitute.com/courses/ethical_hacking_training.html

----------------------------------------------------------------------------

By Date By Thread

Current thread:

firewall setup Ognen Duzlevski (Jul 07)
- Re: firewall setup Salvador Sosa (Jul 07)
- RE: firewall setup David Gillett (Jul 07)
  - RE: firewall setup Ognen Duzlevski (Jul 08)
- RE: firewall setup Somnus (Jul 09)
- Re: firewall setup Dave Dearinger (Jul 09)
- Re: firewall setup Nelson Santos (Jul 09)
- <Possible follow-ups>
- RE: firewall setup MARTIN M. Bénoni (Jul 09)