<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<HTML>
<HEAD>
<META NAME="GENERATOR" CONTENT="SGML-Tools 1.0.9">
<TITLE>Firewall And Proxy Server HOWTO: �$B>e5i$N@_Dj�(B</TITLE>
<LINK HREF="Firewall-HOWTO-13.html" REL=next>
<LINK HREF="Firewall-HOWTO-11.html" REL=previous>
<LINK HREF="Firewall-HOWTO.html#toc12" REL=contents>
</HEAD>
<BODY>
<A HREF="Firewall-HOWTO-13.html">�$B<!$N%Z!<%8�(B</A>
<A HREF="Firewall-HOWTO-11.html">�$BA0$N%Z!<%8�(B</A>
<A HREF="Firewall-HOWTO.html#toc12">�$BL\<!$X�(B</A>
<HR>
<H2><A NAME="s12">12. �$B>e5i$N@_Dj�(B</A></H2>
<P>�$B$3$NJ8=q$rDy$a$/$/$kA0$K!"8!F$$7$?$$@_Dj$,$"$j$^$9!#�(B
�$BB?J,!":#$^$G$N35MW$N@bL@$GBgItJ,$N?M$OB-$j$k$G$7$g$&!#�(B
�$B$7$+$7!"<!$N9`$G$$$/$D$+$N5?Ld$r2r7h$G$-$k$b$C$H>e5i$N@_Dj$r<($=$&$H�(B
�$B;W$$$^$9!#�(B
�$B:#$^$G@bL@$7$F$-$?$3$H$@$1$G$O$"$J$?$N5?Ld$r2r7h$G$-$J$$$N$J$i!"$"$k$$$O!"�(B
�$B%W%m%-%7%5!<%P$H%U%!%$%"%&%)!<%k$K$h$C$F$I$l$[$IB?:L$J@_Dj$,�(B
�$B2DG=$J$N$+$H$$$&E@$K6=L#$,$"$k$J$i!"$b$&$9$3$7FI$s$G$_$F$/$@$5$$!#�(B
<P>
<H2><A NAME="ss12.1">12.1 �$B0BA4@-$N=E;k$,I,MW$JBg$-$J%M%C%H%o!<%/�(B</A>
</H2>
<P>�$B$5$F!"Nc$H$7$F!"$"$J$?$O�(B millisha �$B$H$$$&7k<R$N%j!<%@!<$G!"%5%$%H$r�(B
�$B%M%C%H%o!<%/$K@\B3$7$?$$$H;W$C$F$$$^$9!#�(B
50 �$BBf$N%3%s%T%e!<%?$H�(B 32 �$B8D�(B (5 �$B%S%C%H�(B) �$B$N�(B IP �$BHV9f$N%5%V%M%C%H$,$"$j$^$9!#�(B
�$B?.K><T$K0[$J$k$3$H$r8@$&M}M3$+$i!"%M%C%H%o!<%/Fb$G$NMM!9$J%"%/%;%9$N�(B
�$B%l%Y%k$,I,MW$G$9!#�(B
�$B$=$N7k2L!"%M%C%H%o!<%/$NFCDjItJ,$r$=$l0J30$NItJ,$+$iJ]8n$9$kI,MW$,�(B
�$B$"$k$G$7$g$&!#�(B
<P>�$B$=$N%l%Y%k$O�(B -
<P>
<OL>
<LI>external(�$B30It�(B) �$B%l%Y%k!#C/$G$b8+$l$k%l%Y%k$G$9!#?7$7$$;V4j<T$rJg$k�(B
�$B0Y$K!">pG.E*$J1i@b$dGI<j$J%Q%U%)!<%^%s%9$r9T$J$C$F!"0lHLBg=0$K<+J,C#$N�(B
�$B%$%a!<%8$r$O$C$-$j$H0u>]$E$1$k$?$a$N>l=j$G$9!#�(B
</LI>
<LI><B>Troop(�$B<B9TItBb�(B)</B> external �$B%l%Y%k$r1[$($??M$?$A$N%l%Y%k$G$9!#�(B
�$B$3$3$O<Y0-$JJ}K!$G$N?M?4>80.$d!"GzCF$N@=B$J}K!$K$D$$$F65$($k$H$3$m$G$9!#�(B
</LI>
<LI><B>Mercenary(�$B;2KEK\It�(B)</B> �$B$3$3$O�(B<EM>�$BK\Ev$N�(B</EM>�$B7W2h$rJ];}$7�(B
�$B$F$$$^$9!#$3$N%l%Y%kFb$K$O!"@$3&@,I~$NJ}K!!"@$4V$rA{$,$;$?;v7o$N??Aj$J�(B
�$B$I$NA4$F$N>pJs$,J];}$5$l$F$$$^$9!#�(B
�$B!ZLuCm�(B: �$BLuJ8$OF|K\8~$1$G$"$k$3$H$r�(B
�$B4U$_86J8$H0c$C$F$$$^$9!#86J8$O0J2<$N$H$*$j�(B - Here is where the
<EM>real</EM> plans are keep. In this level is stored all the
information on how the 3rd world government is going to take over the
world, your plans involving Newt Gingrich, Oklahoma City, lown care
products and what really is stored in that hangers at area 51.�$B![�(B</LI>
</OL>
<P>
<H3>�$B%M%C%H%o!<%/@_Dj�(B</H3>
<P>IP �$BHV9f$N<h$j7h$a�(B -
<P>
<UL>
<LI>�$BHV9f$N�(B 1 �$B$D$G$"$k�(B 192.168.1.255 �$B$O!"%V%m!<%I%-%c%9%H%"%I%l%9$J$N$G�(B
�$B;HMQ$G$-$^$;$s!#�(B</LI>
<LI>32 �$B8D$N�(B IP �$B%"%I%l%9$NFb�(B 23 �$B8D$O�(B 23 �$BBf$N%^%7%s$K3d$jEv$F$^$9!#$3$l�(B
�$B$i$N%^%7%s$O%$%s%?!<%M%C%H$K%"%/%;%9$G$-$k$h$&$K$7$^$9!#�(B</LI>
<LI>1 �$B8D$N�(B extra(�$BFCJL$J�(B) IP �$B%"%I%l%9$r%M%C%H%o!<%/>e$N�(B Linux box �$B$KM?�(B
�$B$($^$9!#�(B</LI>
<LI>1 �$B8D$N�(B extra IP �$B%"%I%l%9$r%M%C%H%o!<%/>e$N0[$J$k�(B Linux box �$B$KM?$(�(B
�$B$^$9!#�(B</LI>
<LI>2 �$B8D$N�(B IP �$B%"%I%l%9$r%k!<%?$KM?$($^$9!#�(B</LI>
<LI>4 �$B8D;D$C$F$^$9$,!"%I%a%$%sL>�(B paul, ringo, john, george �$B$KM?$($^�(B
�$B$9!#$3$l$O$A$g$C$HLL?)$i$o$7$?$@$1$G$9!#�(B</LI>
<LI>�$BJ]8n$5$l$?N>J}$N%M%C%H%o!<%/$O%"%I%l%9�(B 192.168.1.xxx �$B$G$9!#�(B</LI>
</UL>
<P>�$B<!$K!"J,N%$7$?�(B 2�$B$D$N%M%C%H%o!<%/$r!"$=$l$>$l0[$J$C$?It20$K9=C[$7$^$9!#�(B
2�$B$D$N%M%C%H%o!<%/$O@V30@~%$!<%5%M%C%H$r;H$C$F@\B3$5$l$^$9!#�(B
�$B$J$N$G!"%M%C%H%o!<%/$OIt20$N30It$+$i40A4$K1#$5$l$^$9!#�(B
�$B9,$$$K$b@V30@~%$!<%5%M%C%H$O!"IaDL$N%$!<%5%M%C%H$HA4$/F1MM$KF0:n$7$^$9!#�(B
<P>�$B$3$l$i$N%M%C%H%o!<%/$O!"�(Bextra IP �$B%"%I%l%9$r;H$C$F�(B Linux box �$B$N�(B 1�$B$D$K�(B
�$B@\B3$5$l$^$9!#�(B
<P>�$BJ]8n$5$l$?�(B 2�$B$D$N%M%C%H%o!<%/$,@\B3$5$l$?%U%!%$%k%5!<%P$,$"$j$^$9!#�(B
Troop �$B0J>e$N?M!9$,4XM?$9$k@$3&@,I~7W2hMQ$N%5!<%P$G$9!#�(B
�$B%U%!%$%k%5!<%P$O�(B Troop �$B%M%C%H%o!<%/MQ$K�(B 192.168.1.17 �$B$N%"%I%l%9$r!"�(B
Mercenary �$B%M%C%H%o!<%/MQ$K�(B 192.168.1.23 �$B$r;}$C$F$$$^$9!#�(B
�$B0[$J$k%$!<%5%M%C%H%+!<%I$r;}$?$J$1$l$P$J$i$J$$$N$G!"0[$J$k�(B IP �$B%"%I%l%9$r�(B
�$B;}$?$J$1$l$P$J$j$^$;$s!#�(B
�$B$=$N�(B IP Forwarding �$B$O%*%U$K$7$^$9!#�(B
<P>�$BN>J}$N�(B Linux box �$B$N�(B IP Forwarding �$B$b%*%U$K$7$^$9!#�(B
�$B%k!<%?$OFC$K;XDj$7$J$$8B$j�(B 192.168.1.xxx �$B$K8~$+$&%Q%1%C%H$OE>Aw$7$J$$$N$G!"�(B
�$B%$%s%?!<%M%C%H$+$iF~$C$FMh$l$^$;$s!#�(B
IP Forwarding �$B$r%*%U$K$9$k$3$H$O!"�(BTroop �$B%M%C%H%o!<%/$+$i$N%Q%1%C%H$r�(B
Mercenary �$B%M%C%H%o!<%/$KE~C#$5$;$J$$$3$H$H!"$=$N5U$NN.$l$b$5$;$J$$$3$H$r�(B
�$B0UL#$7$^$9!#�(B
<P>�$B$^$?!"0[$J$k%M%C%H%o!<%/$K0[$J$k%U%!%$%k$rDs6!$9$k@_Dj$r�(B NFS �$B%5!<%P$K$b�(B
�$B$G$-$^$9!#�(B
�$B$3$l$OLrN)$D$3$H$G!"%7%s%\%j%C%/%j%s%/$rMQ$$$?$A$g$C$H$7$?MWNN$G!"�(B
�$BIaDL$N%U%!%$%k$rA4$F6&M-$9$k$3$H$,$G$-$^$9!#�(B
�$B$3$N@_Dj$H$b$&0lKg$N%$!<%5%M%C%H%+!<%I$rMQ$$$k$3$H$G!"�(B 3�$B$DA4$F$N�(B
�$B%M%C%H%o!<%/$K$3$N0lBf$N%U%!%$%k%5!<%P$G%U%!%$%k$rDs6!$9$k$3$H$,$G$-$^$9!#�(B
<P>
<H3>�$B%W%m%-%7@_Dj�(B</H3>
<P>�$B$5$F!"�(B 3�$B$DA4$F$N%l%Y%k$,$=$NFH<+$N<Y$JL\E*$N0Y$K%M%C%H%o!<%/>e$N�(B
�$B>pJs$rK5<u$G$-$k$h$&$K$7$?$$$N$G!"�(B 3�$B$DA4$F$G%M%C%H%o!<%/$K%"%/%;%9$G$-$k�(B
�$BI,MW$,$"$j$^$9!#�(B
external �$B%M%C%H%o!<%/$OD>@\%$%s%?!<%M%C%H$K@\B3$5$l$k$N$G!"$3$N3&LL$K�(B
�$B%W%m%-%7%5!<%P$rCV$$$F$O$J$j$^$;$s!#�(B
Mercenary �$B$H�(B Troop �$B$N%M%C%H%o!<%/$O%U%!%$%"%&%)!<%k$N8e$m$K$"$k$N$G!"�(B
�$B$3$3$K%W%m%-%7%5!<%P$r@_Dj$9$kI,MW$,$"$j$^$9!#�(B
<P>�$BN>J}$N%M%C%H%o!<%/$OHs>o$K;w$?@_Dj$K$J$j$^$9!#N>J}$N%M%C%H%o!<%/$OF1$8�(B
IP �$B%"%I%l%9$,3d$jEv$F$i$l$^$9!#�(B
�$B$b$C$H6=L#?<$$$b$N$K$9$k0Y$K!"$$$/$D$+$NMWAG$r2C$($F$_$?$$$H;W$$$^$9!#�(B
<P>
<OL>
<LI>�$BC/$b%U%!%$%k%5!<%P$r%$%s%?!<%M%C%H%"%/%;%9MQ$K;H$C$F$O$J$j$^$;$s!#�(B
�$B%U%!%$%k%5!<%P$,%&%#%k%9$dB>$N0UCO0-$J$3$H$K$5$i$5$l$k$3$H$O!"$+$J$j�(B
�$B=EMW$J$3$H$J$N$G!"N)$AF~$j6X;_$G$9!#�(B
</LI>
<LI>troop �$B%M%C%H%o!<%/$+$i%o!<%k%I%o%$%I%&%'%V$K%"%/%;%9$9$k$3$H$O�(B
�$B5v$7$^$;$s!#�(B
�$BH`$i$O71N}Cf$G$"$j!"$3$N<o$N30It$N>pJs$N8!:w$r5v$9$3$H$O7k2L$H$7$F�(B
�$BM-32$J7k2L$K=*$o$k$3$H$,$^$^$"$k$b$N$G$9!#�(B</LI>
</OL>
<P>�$B$@$+$i!"�(BTroop �$B$N�(B Linux box �$B>e$N�(B sockd.conf �$B%U%!%$%k$K$O<!$N9T$,$"$j$^$9!#�(B
<P>
<PRE>
deny 192.168.1.17 255.255.255.255
</PRE>
<P>�$B$=$7$F!"�(BMercenary �$B$N%^%7%s$K$O�(B -
<P>
<PRE>
deny 192.168.1.23 255.255.255.255
</PRE>
<P>�$B$,$"$j$^$9!#$^$?!"�(BTroop �$B$N�(B Linux box �$B$K$O<!$N9T$,$"$j�(B -
<P>
<PRE>
deny 0.0.0.0 0.0.0.0 eq 80
</PRE>
<P>80 �$B$KEy$7$$�(B (eq) �$B%]!<%H�(B (http �$B$N%]!<%H�(B) �$B$K%"%/%;%9$r;n$_$kA4$F$N%^%7%s�(B
�$B$r5qH]�(B (deny) �$B$7$^$9!#�(B
�$BB>$NA4$F$N%5!<%S%9$r$^$@5v$7$F$$$^$9!#%&%'%V%"%/%;%9$N$_5qH]$7$F$$$^$9!#�(B
<P>�$B<!$K!"N>J}$N%^%7%s$N%U%!%$%k$K$O�(B -
<P>
<PRE>
permit 192.168.1.0 255.255.255.0
</PRE>
<P>�$B$,$"$j!"�(B192.168.1.xxx �$B$N%M%C%H%o!<%/>e$NA4$F$N%3%s%T%e!<%?$,!"4{$K�(B
�$B5qH]$7$?$3$H�(B (�$B$9$J$o$A�(B Troop �$B%M%C%H%o!<%/$+$i$N%U%!%$%k%5!<%P$H�(B
�$B%&%'%V$X$N%"%/%;%9�(B) �$B$r=|$-!"$3$N%W%m%-%7%5!<%P$r;H$&$3$H$r5v$7$^$9!#�(B
<P>
<P>Troop �$B$NJ}$N�(B sockd.conf �$B%U%!%$%k$O<!$N$h$&$K$J$j$^$9�(B -
<P>
<PRE>
deny 192.168.1.17 255.255.255.255
deny 0.0.0.0 0.0.0.0 eq 80
permit 192.168.1.0 255.255.255.0
</PRE>
<P>�$B$=$7$F�(B Mercenary �$B$NJ}$N%U%!%$%k$O<!$N$h$&$K$J$j$^$9�(B -
<P>
<PRE>
deny 192.168.1.23 255.255.255.255
permit 192.168.1.0 255.255.255.0
</PRE>
<P>�$BA4$F$N;vJA$r@5$7$/@_Dj$7$?$O$:$G$9!#�(B
�$B3F%M%C%H%o!<%/$OE,@Z$K!"DxNI$$8rN.$rJ]$C$FJ,N%$5$l$^$9!#�(B
<P>
<HR>
<A HREF="Firewall-HOWTO-13.html">�$B<!$N%Z!<%8�(B</A>
<A HREF="Firewall-HOWTO-11.html">�$BA0$N%Z!<%8�(B</A>
<A HREF="Firewall-HOWTO.html#toc12">�$BL\<!$X�(B</A>
</BODY>
</HTML>
