Hi All,

I recently got my hands on an old box and installed freeBSD 5.1 on it with wo network cards.

I am wanting to use that as my firewall/router for my ADSL connection (using NB1300). Has anyone done this and if so how? I have hardly used freeBSD before, used Linux a bit though. So yeah, or if anyone knows of any guides on how to do it that would be great.

Phil

There is some stuff on firewalling in the FreeBSD handbook. Check out

http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls.html

(On my 4.9 system, this is also available in /usr/share/doc/en/books/handbook)

Personally I front the connection with a Linux box, but let the NB1300 handle the firewalling via the NAT stuff and only forwarding those ports into the linux box that I want open (mail, www etc.). It is by no means the best way of doing it, but it works for a simple setup.

Believe it or not, its not very hard at all to get FreeBSD to do everything and just turn the NB1300 into a bridge (which is what I have done), you also have a lot more power to control, block nat etc however you want with FreeBSD and arnt tied to the modems way of doing things.

If you need any help with stuff email me and i'll see what I can do.

Matt.

berin :: that is what I am currently doing (using port forwarding). but that is becoming a problem as I run two webservers here, and would like to direct port 80 to either depending on the dn requested. It is possible using the apache config page (proxy thingy I think) but I;'d prefer not too. and I would like to have a firewall setup here anyway -- to keep my system as secure as possible.

matty5700 :: thats what I want to do :) I;ll get in contact with u.

<GRIN>. Whatever works best for you!

I run a couple of sites under the one Apache, but I do it using virtual hosts running in one Apache instance. I find it easier than running multiple boxes, and I don't have to worry about opening more ports or defining more IP addresses.

Cheers,
Berin

yeah..I do that already - apache virtual hosts

I have this other site that is on a dedicated computer - because it uses a lot of different stuff and different config - and it is installed on a redhat box - and I don't like deadhat.

Have you considered smoothwall this will do what you what and saves the hassle. www.smoothwall.org (http://www.smoothwall.org) You will be up and running in about 5 minutes.

But then again it is fun setting it up yourself!