the simplest way is to configure the rules on the interface pass in or pass out stuff... and configure the direction to which you want the traffic to go to.
so, for example, from lan1 to lan2, but not the other way around.. this should work in theorie... it will not be an easy task though... Good luck Regards, Brenno > -----Original Message----- > From: Trevor Osatchuk [SMTP:[EMAIL PROTECTED]] > Sent: zaterdag 20 oktober 2001 1:10 > To: Firewalls-Owner (E-mail) > Subject: OpenBSD firewall between lans > > I am a newbie sysadmin. I have set up a FreeBSD firewall at home and have > been given the task of setting up a firewall at the office. I have two > lans > that are currently separated by a WinSocks Proxy. I am on lan1, the other > lan is lan2, both have non-internet routable addresses. I was going to > replace this with an OpenBSD firewall. The reason why I want to do this > is > because I want to be able to connect to hidden Windows shares, e.g. ipc$, > from one lan1 to lan2, but not the other way. We cannot do this with the > proxy. We need to connect to these shares on the other lan on occasion > and > end up using a dialup to the other lan instead of the proxy. > > Now lan1 has unlimited access to lan2, but I would like to limit access to > my side. Is this a contradiction? Can I allow us to map shares to > Windows > boxes and browse in one direction only? > > Any rants, suggestions, advice and/or tutorials welcome. > > Thanks! > > Trevor Osatchuk > Process Solutions Canada Ltd. > Support and Integration Analyst > (780) 452-2227 Ext. 286 > [EMAIL PROTECTED] > > Any man whose errors take ten years to correct is quite a man. > - J. Robert Oppenheimer, speaking of Albert Einstein > > _______________________________________________ > Firewalls mailing list > [EMAIL PROTECTED] > http://lists.gnac.net/mailman/listinfo/firewalls _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
