*BSD News Article 26030


Return to BSD News archive

Path: sserve!newshost.anu.edu.au!munnari.oz.au!news.Hawaii.Edu!ames!elroy.jpl.nasa.gov!swrinde!cs.utexas.edu!howland.reston.ans.net!xlink.net!subnet.sub.net!smurf.noris.de!smurf.noris.de!not-for-mail
From: urlichs@smurf.noris.de (Matthias Urlichs)
Newsgroups: comp.os.386bsd.misc
Subject: Re: NetBSD on cheap boxes
Date: 14 Jan 1994 13:40:40 +0100
Organization: Smurf-O-Box, Nuernberg, FRG
Lines: 20
Message-ID: <2h63s8$4s2@smurf.noris.de>
References: <2h2u3kINN6o3@ymir.cs.umass.edu>
NNTP-Posting-Host: localhost
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit

In comp.os.386bsd.misc, article <2h2u3kINN6o3@ymir.cs.umass.edu>,
  doyle@cs.umass.edu writes:
> Hehe..  I bought a cheap 386sx box to run NetBSD solely as a router.

Speaking of which... are there kernel patches to selectively block packets?
For example, don't forward TELNET to this site, block IRC for that network, 
only allow SMTP to the other machine. I assume a rather quick hack to 
ip_forward should work; fragmented IP packets might be a problem except that 
the first TCP or UDP packet on any given connection almost never is 
fragmented.

-- 
Brown's Law of Business Success:
   Our customer's paperwork is profit. Our own paperwork is loss.
-- 
Matthias Urlichs        \ XLink-POP Nürnberg  | EMail: urlichs@smurf.noris.de
Schleiermacherstraße 12  \  Unix+Linux+Mac    | Phone: ...please use email.
90491 Nürnberg (Germany)  \   Consulting+Networking+Programming+etc'ing     42

Click <A HREF="http://smurf.noris.de/~urlichs/finger">here</A>.