
                     Linux IP Masquerade mini HOWTO Ķ
                                       
@: Ambrose Au, [1]ambrose@writeme.com;
David Ranch, [2]dranch@trinnet.net
Ķ: [3]Ӱ [4]cwhuang@linux.org.tw

   v1.50, 7 February 1999 ½Ķ: 17-31 March 1999
     _________________________________________________________________
   
   oyzpb@x Linux DW_ IP Masquerade \A\S
   Uں IP }suqgѧA Linux sںC
     _________________________________________________________________
   
1. ²

     * 1.1 ²
     * 1.2 eA^X & ѦҸT
     * 1.3 v & ŧi
       
2. I

     * 2.1 O IP Masquerade?
     * 2.2 {p
     * 2.3 ֥iHq IP Masquerade q?
     * 2.4 ֤ݭn IP Masquerade?
     * 2.5 IP Masquerade OpB@?
     * 2.6 b Linux 2.2.x Wϥ IP Masquerade ݨD
     * 2.7 b Linux 2.0.x Wϥ IP Masquerade ݨD
       
3. IP Masquerade ]w

     * 3.1 sĶ֤ߥ[J IP Masquerade 䴩
     * 3.2 wpκ IP }
     * 3.3 tm䥦
     * 3.4 tm IP e(Forwarding)覡
     * 3.5  IP Masquerade
       
4. 䥦 IP Masquerade Dγn䴩

     * 4.1 IP Masquerade D
     * 4.2 iJtΪA(incoming services)
     * 4.3 w䴩ȤݳnHΨ䥦]w譱`Nƶ
     * 4.4 IP ޲z (ipfwadm) 
     * 4.5 IP  (ipchains)
     * 4.6 IP Masquerade HλݨD(Demand-Dial-Up)
     * 4.7 IPautofw ʥ]e{
     * 4.8 CU-SeeMe P Linux IP-Masquerade ²u
     * 4.9 䥦u
       
5. `Dѵ

     * 5.1 IP Masquerade _MʺAtm IP @PB@?
     * 5.2 گϥμƾھADSL, ìPsuӳsںèϥ IP
       Masquerade ?
     * 5.3 IP Masquerade 䴩ε{?
     * 5.4 ڦpb Redhat, Debian, Slackware ϥ IP Masquerade O?
     * 5.5 ڤɯŨ 2.2.x ֤ߡA IP Masquerade ΤF?
     * 5.6 ڤwgɯŨ 2.0.30 ᪺֤ߡA IP Masquerade ٤?
     * 5.7 ڵLk IP Masquerade B@!  Windows xܶ?
     * 5.8 ˬdLکҦ]wFALk IP Masquerade u@Cڸӫ
       ?
     * 5.9 ڦp[J IP Masquerade qH׾?
     * 5.10 ڷQU IP Masquerade oiCڸӫ?
     * 5.11 b̥ih IP Masquerade T?
     * 5.12 ڷQ½Ķ󦨨䥦yAڸӫ?
     * 5.13 oILɤFAA٦b@?
     * 5.14 ڲש IP Masquerade ʤFAn! ڷQ§A̡Aڸӫ
       ?
       
6. 䥦

     * 6.1 Ϊ귽
     * 6.2 Linux IP Masquerade 귽
     * 6.3 P
     * 6.4 ѦҸ
     _________________________________________________________________
   
1. ²

1.1 ²

   oyzpb@x Linux DW_ IP Masquerade \A\S
   Uں IP }suqgѧA Linux sںCAi
   OHAӺs Linux, ]iO䥦AOII(ppp) su
   CoN|jդAӺsupA]oӬO̱`רҡC
   
     oتO 2.2.x  2.0.x íw֤ߪϥΪ̰ѦҡCª֤ߦp
     1.2.x ä]tbC
     
1.2 eA^X & ѦҸT

   ڵo{sbs֤ߤWAO 2.x ֤ߡA]w IP Masquerade ɫD`xb
   CM`ݵ(FAQ) PqH׾(mailing list)AMӨS@o譱
   MFӥBbqH׾¤Wǹoˤ@(HOWTO) ШDC
   HAڨMwgҦs@@Ӱ_IAåBƱ߿jޥɡA@ǫD
   `FѥϥΪ̫إߤ󪺰¦CpGA{ڰnAnbNiDڡA
   o˧گ⥦onC
   
   oܦhOH Ken Eves `ݵH IP Masquerade qH׾¸
   \hUT@¦CSOP Mr. Matthew Driver bqH׾¤T
   ޵oڳ] IP Masquerade FPHγ̫ἶgFoC
   
   pGڪT~ο|TAЧON^XηNH
   [5]ambrose@writeme.com  [6]dranch@trinnet.net ӡCAL^XNvT
   o󪺥!
   
   oOQ@A IP Masquerade b̵uɶB@ֳtޡC
   ]ڤO@M@aAAi|o{󪺸TëDpAQ@
   [C ̷sHθTiHbکҺ@ [7]IP Masquerade Resource 
   WC pGA IP Masquerade ޳NDAХ[J IP
   Masquerade qH׾¦ӧOHqll󵹧ڡA]ڪɶAӥB IP
   Masquerade oi̧̭󦳯O^ADC
   
   o̷siHb [8]IP Masquerade Resource WA̭]
   HTML H postscript :
     * [9]http://ipmasq.cjb.net/
     * [10]http://ipmasq2.cjb.net/
     * аѦ [11]IP Masquerade Resource MgxC H䥦Mgx
       C
       
1.3 v & ŧi

   ovݩ Ambrose Au 1999, ӥBOKOCAiHb GNU q
   }v覡UC
   
   o󤤪T䥦ewgɤFڳ̤jVOCLצpAIP
   Masquerade OʪAӥBڤ]i|Ǩǿ~FҥHAӦۤvMwOO
   nӵ۳o󤤪TC
   
   SH|ϥγo󤤪TҳyqlaΨ䥦ltdC]NO
   A
   
     @̤κ@̷̤ӳo󤺮eʧ@ҳyl`tdC
     
   
   
   This document is copyright(c) 1996 Ambrose Au, and it's a free
   document. You can redistribute it under the terms of the GNU General
   Public License.
   
   The information and other contents in this document are to the best of
   my knowledge. However, ip_masq is experimental, and there is chance
   that I make mistakes as well; so you should determine if you want to
   follow the information in this document.
   
   Nobody is responsible for any damage on your computers and any other
   losses by using the information on this document. i.e.
   
     THE AUTHOR AND MAINTAINERS ARE NOT RESPONSIBLE FOR ANY DAMAGES
     INCURRED DUE TO ACTIONS TAKEN BASED ON THE INFORMATION IN THIS
     DOCUMENT.
     
2. I

2.1 O IP Masquerade?

   IP Masquerade O Linux @\CpG@x Linux Dϥ IP
   Masquerade \suںWA򱵤Wq]׬ObP@Ӱϰ
   WǥѼƾھsu^]iHĲںAYϥ̨Sow
   IP }C
   
   oϱo@ǹqiHæbhD(gateway) tΫ᭱sںӤQo{A
   ݰ_ӴNuoӨtΦbϥκںC}]w}n(masquerade)t
   Τw@ӷ|}}nʥ]Lo(packet filter firewall)
   ӱo[x]]̤S~^C
   
2.2 {p

   IP Masquerade wgoih~ͩ󦨼A]w֤J Linux 2.2.x ֤
   C q 1.3.x ֤߶}lwgسo䴩C\hӤHƦܤqbϥΥ
   AӦNGC
   
   sHλñJ(telnet)wg^ܥiHb IP Masquerade WB@C
   ɮ׶ǿ(FTP)A(IRC) Hβť Real Audio {biHJYǼҲհt
   XC䥦ƬyT (streaming audio) O True Speech H
   Internet Wave ]B@C@ǳqH׾¤ϥι٦ƦٹչLT|ĳn
   C Ping {btXsiHoںTw(ICMP)׸ɤ]B
   @C
   
   󧹾㪺䴩nCаѦ 4.3 `C
   
   IP Masquerade bƺؤP@~tΤΥOWP 'Ȥݾ' tX}nC 
   \רҦϥ Unix, Windows95, Windows NT, Windows for Workgroup
   (with TCP/IP package), OS/2, Macintosh System's OS with Mac TCP, Mac
   Open Transport, DOS with NCSA Telnet package, VAX, Alpha with Linux, 
    Amiga with AmiTCP  AS225-stack tΡC oC٦b_W[C
   INOAunAtΨϥ TCP/IP wANӯM IP Masquerade @_u
   @C
   
2.3 ֥iHq IP Masquerade q?

     * pGAxsں Linux DAӥB
     * pGA@ǰ TCP/IP s Linux qbϰWAH/
       άO
     * pGA Linux D@ӥHWƾھåB@ PPP  SLIP As
       䥦qA
     * oǨ䥦Sw IP }C]oǾqo̶}lHN٬
       䥦^
     * ӥBMApGAƱoǨ䥦B~OδNsWں
       :)
       
2.4 ֤ݭn IP Masquerade?

     * pGAOW@x(stand-alone) sں Linux DA
        IP Masquerade SNqAΪ
     * pGA䥦֦w IP }AANݭn IP
       Masquerade
     * ӥBMApGAwKOϥ(free ride) oӥDNܡC
       
2.5 IP Masquerade OpB@?

   ` Ken eves  IP Masquerade FAQ:
  oOj²檺]w:

     SLIP/PPP         +------------+                         +-------------+
     to provider      |  Linux     |       SLIP/PPP          | Anybox      |
    <---------- modem1|            |modem2 ----------- modem |             |
      111.222.333.444 |            |           192.168.1.100 |             |
                      +------------+                         +-------------+

          WϤ@xw˨ð ip_masquerading   Linux
      ϥ modem1 g SLIP/or/PPP  sںC@
      w IP } 111.222.333.444C]w modem2 \
      ñJð_l SLIP/or/PPP  sC

          ĤGӨtΡ]O Linux  tΡ^iJ Linux
      ð_l SLIP/or/PPP  sCbںWèSw
      IP  }ҥHϥ 192.168.1.100C]Ѿ\Uz^

          tX ip_masquerade  ξAetm(routing configured)
      Anybox  oxiHںyNpPusbW
      ]Fּƨҥ~^C

  ` Pauline Middelink:
      OѰO ANYBOX ӧ Linux  @hD]L׬O
      w]e|ΥuOӤlSY^CpG ANYBOX 
      o˳]A Linux  ӬҦne}Nz}ѪR
      Rw(proxy arp) AȡANz}ѪR]wWLo
      dC

  U` comp.os.linux.networking @giåBy[sH
  ŦXWzdҪε:

  CڧiD ANYBOX ox] slip  linux  OhDC
  C@ӫʥ]q ANYBOX iJ linux  ɡA|wsӷ
    (source port number)A⥦ۤv ip }Jʥ]Y
    xsӪCMᥦN|ǥ SLIP/or/PPP  ɭקLʥ]
    eWںC
  C@ӫʥ]qںӨ linux  ɡApG𸹬OWw
    䤤@ӡAN|XӪ𸹥H ip }A⥦̩^
    ]YAåBʥ]e ANYBOX C
  CeXʥ]DNûD䤤tOC

   @ IP Masquerading Ҥl:
   
   UϥܬO嫬Ҥl:-

    +----------+
    |          |  Ethernet
    | abox     |::::::
    |          |2    :192.168.1.x
    +----------+     :
                     :   +----------+   PPP
    +----------+     :  1|  Linux   |   link
    |          |     ::::| masq-gate|:::::::::// Internet
    | bbox     |::::::   |          |
    |          |3    :   +----------+
    +----------+     :
                     :
    +----------+     :
    |          |     :
    | cbox     |::::::
    |          |4
    +----------+


    <-Internal Network->

   boӨҤlڭ̦Ҽ{|xqtΡ]Qk٦ǪFAں
    IP susAHΤ@ǡ]WLo@^bںWA洫
   TF^C o Linux t masq-gate O abox, bbox, cbox 
   sں˹hDC ϥΫwp(private) }Ab
   oӮרҤO class C  192.168.1.0, Linux ֦} 192.168.1.1
   Ө䥦tΤ]֦W}C
   
   oTx abox, bbox H cbox (̥iH@~t  O
   Windows 95, Macintosh MacTCP άƦܬOt@x Linux Aun̯F
   IP)iHsuںW䥦hAMӳoӰ˨tιhD masq-gate 
   ̩ҦsuҥHoǳsuݰ_ӹO쥻Yq˹hD masq-gate o
   XAӥB٦wư˳suǦ^^t  ҥHbW
   tάݨ쪺Oqںe|ӥBDL̪ƳQ˹LC
   
2.6 b Linux 2.2.x Wϥ IP Masquerade ݨD

     ** аѦ [12]IP Masquerade Resource Ho̷sTC**
     
     * 2.2.x ֤ߪl{Xiq [13]http://www.kernel.org/ oC
       (j{NoMp Red Hat 5.2 - tƤF 2.0.36 ֤ - wF
       Ҳդƪ֤ߡABҦ IP Masquerade һݪﶵw}C oرΤU
       AwSnAۦsĶCpGAۤvɯŮ֤ߡAA`NAݭnAb
       y|C)
     * iJ֤߼ҲաA̦nO 2.1.121 ΥH᪺
     * ]w}n TCP/IP 
       b [14]Linux NET-3 HOWTO  [15]Network Administrator's
       Guide
       ]аѦ [16]Trinity OS Doc, O@D`㪺 Linux ѦҫޡC
     * NA Linux DsWں
        [17]Linux ISP Hookup HOWTO, [18]Linux PPP HOWTO,
       [19]Linux DHCP mini-HOWTO  [20]Linux Cable Modem mini-HOWTO
     * IP Chains 1.3.8 ΧsCiq
       [21]http://www.rustcorp.com/linux/ipchains/ oC
       ݨDhT]b [22]Linux IP Firewalling Chains pageC
     * 䥦TAШ [23]Linux IP Masquerade Resource
       
2.7 b Linux 2.0.x Wϥ IP Masquerade ݨD

     ** аѦ [24]IP Masquerade Resource Ho̷sTC**
     
     * ֤ 2.0.x l{XiHqǫo [25]http://www.kernel.org/
       (j{NoMp Red Hat 5.2 - tƤF 2.0.36 ֤ - wF
       Ҳդƪ֤ߡABҦ IP Masquerade һݪﶵw}C oرΤU
       AwSnAۦsĶCpGAۤvɯŮ֤ߡAA`NAݭnAb
       y|C)
     * iJ֤߼ҲաA̦nO 2.0.0 ΧsAiHqǫo
       [26]http://www.pi.se/blox/modules/modules-2.0.0.tar.gz
       (ܤֻݭn modules-1.3.57)
     * ]wn TCP/IP 
       b [27]Linux NET-3 HOWTO  [28]Network Administrator's
       Guide
       ]аѦ [29]Trinity OS Doc, O@D`㪺 Linux ѦҫޡC
     * NA Linux DsWں
        [30]Linux ISP Hookup HOWTO, [31]Linux PPP HOWTO,
       [32]Linux DHCP mini-HOWTO  [33]Linux Cable Modem mini-HOWTO
     * Ipfwadm 2.3 ΧsiHqǫo
       [34]ftp://ftp.xos.nl/pub/linux/ipfwadm/ipfwadm-2.3.tar.gz b Linux
       Ipfwadm Wh󪩥T [35]Linux IPFWADM page
     * AiHܩʦa[W@ IP Masquerade ׸ɥHW[䥦\C qo
       iHhTA [36]IP Masquerade Resources (oǭ׸ɾAΩ
        2.0.x ֤)
       
3. IP Masquerade ]w

     pGApκ̦󭫭nTAbϥ IP Masquerade eФT
     CoiনAqںhDAϤMA]iনt@䪺@ɶi
     JApκ~|C
     
3.1 sĶ֤ߥ[J IP Masquerade 䴩

     pGA Linux oMwgNUN쪺һݯSʤμҲսsĶih
     (jҲդƪ֤ߦAһݪF)AAݭnssĶ֤ߡC 
     LQĳAŪ@Ū`A]]tF䥦ΪTC
     
  Linux 2.2.x ֤
  
     * AAݭn 2.2.x ֤ߪl{XC
     * pGoOAĤ@sĶ֤ߡAn`ȡC ƹWAoD`eӥB[\
       [37]Linux Kernel HOWTOC
     * HoӫO: tar xvzf linux-2.2.x.tar.gz -C /usr/src N֤߭lX
       } /usr/src/, 䤤 x O 2.2 ᪺׸ɼh(Tw@s linux 
       βŸs)C
     * [WA׸ɡC]s׸ɤ_XӡAҥHӸ`|]tbo̡C 
       sTаѦ [38]IP Masquerade ResourcesC
     * sĶ֤ߧi@BнаѦ Kernel HOWTO Hή֤߭l{X
       ̪ README ɮסC
     * o̬OAnsĶihﶵ:
       UCﶵn^ YES:
       
  * Prompt for development and/or incomplete code/drivers
    CONFIG_EXPERIMENTAL
    - oNAܧʪ IP Masquerade {XsĶ֤߸̥h

  * Enable loadable module support
    CONFIG_MODULES
    - AJ ipmasq Ҳզp ip_masq_ftp.o

  * Networking support
    CONFIG_NET

  * Network firewalls
    CONFIG_FIREWALL

  * TCP/IP networking
    CONFIG_INET

  * IP: forwarding/gatewaying
    CONFIG_IP_FORWARD

  * IP: firewalling
    CONFIG_IP_FIREWALL

  * IP: masquerading
    CONFIG_IP_MASQUERADE

  * IP: ipportfw masq support
    CONFIG_IP_MASQUERADE_IPPORTFW
    - ĳ[J

  * IP: ipautofw masquerade support
    CONFIG_IP_MASQUERADE_IPAUTOFW
    - i

  * IP: ICMP masquerading
    CONFIG_IP_MASQUERADE_ICMP
    - 䴩 ICMP ʥ]Aĳ[J

  * IP: always defragment
    CONFIG_IP_ALWAYS_DEFRAG
    - ׫ĳϥ

  * Dummy net driver support
    CONFIG_DUMMY
    - ĳ[J

  * IP: ip fwmark masq-forwarding support
    CONFIG_IP_MASQUERADE_MFW
    - i

       `N: ouLOA] IP Masquerade һݪءA䥦ӧAһݪ
       ܡC
     * bsĶ֤ߤAAݭnsĶΦw˼Ҳ:
       
make modules; make modules_install

     * MUX[A /etc/rc.d/rc.local ɮ (Ψ䥦A{A
       ɮ)HKC}ɦ۰ʸJ /lib/modules/2.2.x/ipv4/ 
       :
       
        .
        .
        .
/sbin/depmod -a
/sbin/modprobe ip_masq_ftp
/sbin/modprobe ip_masq_raudio
/sbin/modprobe ip_masq_irc
(HΨ䥦Ҳզp ip_masq_cuseeme, ip_masq_vdolive,
pGA[Woǭ׸ɪ)
        .
        .
        .

       n: IP e\b 2.2.x ֤ߤw]OAнTwAHON
       䥴}:
       
echo "1" > /proc/sys/net/ipv4/ip_forwarding

        Red Hat ϥΪ̨ӻAAiH /etc/sysconfig/network 
       FORWARD_IPV4=false 令 FORWARD_IPV4=trueC
     * sҰ Linux DC
       
  Linux 2.0.x Kernels
  
     * AAݭn֤ߪl{X(̦nO̷s 2.0.36 ΥHW)C
     * pGoOAĤ@sĶ֤ߡAn`ȡC ƹWAoD`eӥB[\
       [39]Linux Kernel HOWTOC
     * HoӫO: tar xvzf linux-2.0.x.tar.gz -C /usr/src N֤߭lX
       } /usr/src/, 䤤 x O 2.0 ᪺׸ɼh(Tw@s linux 
       βŸs)C
     * [WA׸ɡC]s׸ɤ_XӡAҥHӸ`|]tbo̡C 
       sTаѦ [40]IP Masquerade ResourcesC
     * sĶ֤ߧi@BнаѦ Kernel HOWTO Hή֤߭l{X
       ̪ README ɮסC
     * o̬OAnsĶihﶵ:
       UCﶵn^ YES:
       
  * Prompt for development and/or incomplete code/drivers
    CONFIG_EXPERIMENTAL
    - oNAܧʪ IP Masquerade {XsĶ֤߸̥h

  * Enable loadable module support
    CONFIG_MODULES
    - AJҲ

  * Networking support
    CONFIG_NET

  * Network firewalls
    CONFIG_FIREWALL

  * TCP/IP networking
    CONFIG_INET

  * IP: forwarding/gatewaying
    CONFIG_IP_FORWARD

  * IP: firewalling
    CONFIG_IP_FIREWALL

  * IP: masquerading (EXPERIMENTAL)
    CONFIG_IP_MASQUERADE
    - oMOʪAoO ** 

  * IP: ipautofw masquerade support (EXPERIMENTAL)
    CONFIG_IP_MASQUERADE_IPAUTOFW
    - ĳ[J

  * IP: ICMP masquerading
    CONFIG_IP_MASQUERADE_ICMP
    - 䴩 ICMP ʥ]Ai

  * IP: always defragment
    CONFIG_IP_ALWAYS_DEFRAG
    - ׫ĳϥ

  * Dummy net driver support
    CONFIG_DUMMY
    - ĳ[J

       `N: ouLOA] IP Masquerade һݪءA䥦ӧAһݪ
       ܡC
     * bsĶ֤ߤAAݭnsĶΦw˼Ҳ:
       
make modules; make modules_install

     * MUX[A /etc/rc.d/rc.local ɮ (Ψ䥦A{A
       ɮ)HKC}ɦ۰ʸJ /lib/modules/2.0.x/ipv4/ 
       :
       
        .
        .
        .
/sbin/depmod -a
/sbin/modprobe ip_masq_ftp
/sbin/modprobe ip_masq_raudio
/sbin/modprobe ip_masq_irc
(HΨ䥦Ҳզp ip_masq_cuseeme, ip_masq_vdolive,
pGA[Woǭ׸ɪ)
        .
        .
        .

       n: IP e\b 2.0.34 ᪺֤ߤw]OAнTwAH
       ON䥴}:
       
echo "1" > /proc/sys/net/ipv4/ip_forwarding

        Red Hat ϥΪ̨ӻAAiH /etc/sysconfig/network 
       FORWARD_IPV4=false 令 FORWARD_IPV4=trueC
     * sҰ Linux DC
       
3.2 wpκ IP }

   ]Ҧ䥦Sw}AӥT覡Ӥt}o
   ǾC
   
   ` IP Masquerade FAQ:
   
    RFC (#1597, {biwLɤF) OSP~ɳsuӨϥΤ
   IP }CTӼƦr϶OSOoӥتӫOdC䤤@ӧڨϥΪO
   192.168.1.n  192.168.255.n  255 Class-C lC
   
` RFC 1597:

ĤT`: pΦ}Ŷ

      ں}w(IANA: Internet Assigned Numbers Authority)
      wgOdUCTӰ϶ IP }Ŷpκ:

                     10.0.0.0        -   10.255.255.255
                     172.16.0.0      -   172.31.255.255
                     192.168.0.0     -   192.168.255.255

      ڭ̱NٲĤ@Ӱ϶ "24줸϶"AĤGӬ "20줸϶"A
      ӲĤTӫh٬ "16줸϶"C`NĤ@Ӱ϶NuO
      class A  XAĤGӰ϶hOs 16  class B 
      XAӲĤTӰ϶O@ 255  ӳs class C XC

   ҥHApGAnϥΤ@ class C ܡAAӥH
   192.168.1.1, 192.168.1.2, 192.168.1.3, ..., 192.168.1.x ӦWC
   
   192.168.1.1 q`OhDoxAbYAsWں Linux DC`N
   192.168.1.0 H 192.168.1.255 OHμs}AOOdCקKb
   AWϥγoǦ}C
   
3.3 tm䥦

   FCx]wA IP }~AA]ӳ]wAhDC@뻡
   AoOD`FCAu²aJ Linux D}(q`O
   192.168.1.1)@hD}C
   
   W٪AȡAAiH[J DNS tΡC̥i઺ӬOA Linux ϥ
   @ӡCA]iHܩʦa[Wr(domain suffix) C
   
   bAstmo IP }AOosҰʾAAȩάOs}C
   
   UtmdҰ]AϥΤ@ Class C åBH 192.168.1.1 @ Linux
   D}CЪ`N 192.168.1.0  192.168.1.255 OOdC
   
  tm Windows 95
  
    1. pGA٨Sw˺dHάɭXʵ{A{bC
    2.  'x/' ̥hC
    3. pGAtm̨S 'TCP/IP w' h[ihC
    4. b'TCP/IP e'A'IP }'åB IP }]w
       192.168.1.x,(1<x<255) AåBlBn] 255.255.255.0
    5. b'qTh'[J 192.168.1.x @AhDC
    6. b'DNS tm'/'DNS A'U[JA Linux DϥΪ DNS (q`iH
       b /etc/resolv.conf ̧)CAiHܩʦa[JArjM
       ǡC
    7. nܧ䥦]wADADۤvbC
    8. bҦܲU'Tw'åBsҰʨtΡC
    9. պsuAPing A linux D: q'}l/'AJ ping
       192.168.1.1
       (ouOϰsuաAA{b٤ ping ~@ɡC)
   10. AiHb windows ؿUܩʦaإߤ@ HOSTS ɮסApAiHϥ
       ϰ̪W١Cb windows ؿ̦Ӻ٬ HOSTS.SAM dҡC
       
  tm Windos for Workgroup 3.11
  
    1. pGA٨Sw˺dHάɭXʵ{A{bC
    2. pGA٥w TCP/IP 32b M󪺸ܴN˧aC
    3. b 'Main'/'Windows Setup'/'Network Setup', U 'Drivers'C
    4. N 'Network Drivers' ̪ 'Microsoft TCP/IP-32 3.11b' ϥաAU
       'Setup'C
    5. ]w IP } 192.168.1.x (1 < x < 255), M]w Subnet Mask 
       255.255.255.0 H Default Gateway  192.168.1.1C
    6. n} 'Automatic DHCP Configuration' æb 'WINS Server' J
       FADAb@ Windows NT 줤ӥBADAbC
    7. U 'DNS', Jb 3.3.1 p`BJ쪺TAMbAU
       'OK' sC
    8. U 'Advanced', pGAϥ 3.3.1 p`BJQDɮסA
        'Enable DNS for Windows Name Resolution'  'Enable LMHOSTS
       lookup'C
    9. bҦܲ 'OK' ísҰʨtΡC
   10. Ping @UA Linux DHպs: b 'File/Run' J: ping
       192.168.1.1
       (ouLOϰsաAA٤ ping ~@)C
       
  Configuring Windows NT
  
    1. pGA٨Sw˺dHάɭXʵ{A{bC
    2.  'Main'/'Control Panel'/'Network'C
    3. pGA٨S TCP/IP AȪܱq 'Add Software' 椤[J TCP/IP 
       wάC
    4. b 'Network Software and Adapter Cards' ̱N 'Installed Network
       Software' ܲ 'TCP/IP w' ϥաC
    5. b 'TCP/IP Configuration'AܾAɭXʵ{AҦpA[1]Novell
       NE2000 AdapterCM]w IP } 192.168.1.x (1 < x < 255)AM
       ]w Subnet Mask  255.255.255.0 H Default Gateway 
       192.168.1.1C
    6. n} 'Automatic DHCP Configuration' æb 'WINS Server' J
       FADAb@ Windows NT 줤ӥBADAbC
    7. U 'DNS', Jb 3.3.1 p`BJ쪺TAMbAU
       'OK' sC
    8. U 'Advanced', pGAϥ 3.3.1 p`BJQDɮסA
        'Enable DNS for Windows Name Resolution'  'Enable LMHOSTS
       lookup'C
    9. bҦܲ 'OK' ísҰʨtΡC
   10. Ping @UA Linux DHպs: b 'File/Run' J: ping
       192.168.1.1
       (ouLOϰsաAA٤ ping ~@)C
       
  tm UNIX tCt
  
    1. pGA٥w˧AdåHAɭXʵ{ssĶA֤ߡA{
       bNaC
    2. w TCP/IP AO nettools MApGA٨S˪ܡC
    3. N IPADDR ] 192.168.1.x (1 < x < 255), MN NETMASK ]
       255.255.255.0, GATEWAY ] 192.168.1.1, H BROADCAST ]
       192.168.1.255C
       ҦpAb Red Hat Linux tΤWAiHs
       /etc/sysconfig/network-scripts/ifcfg-eth0AΪq Control Panel
       ̰C
       (b SunOS, BSDi, Slackware Linux, ۦP...)
    4. NAW٦AλjMr[ /etc/resolv.confC
    5. ̾ڧA]wAinsA /etc/networks ɮסC
    6. sҰʾAAȡA²檺s}C
    7. oX ping O: ping 192.168.1.1 HըA gateway s
       C
       (ouLOϰsաAA٤ ping ~@)C
       
  tmϥ NCSA Telnet M DOS 
  
    1. pGA٨Sw˺dA{bC
    2. JAʥ]Xʵ{C NE2000 dӻApGAd]w IRQ
       10 εw} 0x300A nwpd 0x60 10 0x300C
    3. إߤ@sؿAMѶ} NCSA Telnet M: pkunzip tel2308b.zip
    4. ϥΤrs边} config.tel ɮסC
    5. ]w myip=192.168.1.x (1 < x < 255), H netmask=255.255.255.0C
    6. bҤlAAӳ]w hardware=packet, interrupt=10, ioaddr=60C
    7. Aܤ֭n@W]w gatewayA]NO Linux D:
       
name=default
host=yourlinuxhostname
hostip=192.168.1.1
gateway=1

    8. ٭nt~@ӫwW٪A:
       
name=dns.domain.com ; hostip=123.123.123.123; nameserver=1

       `N: ΧA Linux DϥΪ DNS ATӨNC
    9. xsA config.tel ɮסC
   10. Telnet A Linux DHպs: telnet 192.168.1.1
       
  tm MacTCP  MacOS 
  
    1. pGA٨SAAӺ౵w˾AXʵ{A̦n{bN@C
    2. } MacTCP control panelAܾAXʵ{(Ethernet, ӫD
       EtherTalk) ëU 'More...' sC
    3. b 'Obtain Address:',  'Manually'C
    4. b 'IP Address:' UAquX椤 class CCܲ䥦
       C
    5. b 'Domain Name Server Information:' JATC
    6. b 'Gateway Address:' AJ 192.168.1.1C
    7. U 'OK' Hxs]wCb MacTCP control panel DAb 'IP
       Address:' JA Mac  IP } (192.168.1.x, 1 < x < 255)C
    8.  MacTCP control panelCpGuXAs}ANa
       C
    9. AiH ping @UA Linux DӨӴպsuCpGA MacTCP
       Watcher KO{AU 'Ping' sAMbuXܲJA
       Linux Da}(192.168.1.1)C(ouLOϰsաAA
        ping ~@ɡC)
   10. Aiܩʦab System Folder إߤ@ Hosts ɮץHKAiHϥΧA
       ̾DW١C oɮץiwgsbA System Folder
       ̡AӥBӷ|]t@(ѱ)dҶئӧAiHھڧAݭnӭ
       C
       
  tm Open Transport  MacOS t
  
    1. pGA٨SAAӺ౵w˾AXʵ{A̦n{bN@C
    2. } TCP/IP Control Panel Mq Edit 椤 'User Mode ...'C
       TwϥΪ̼Ҧܤ֬O 'Advanced' MU 'OK' sC
    3. q File 椤 'Configurations...'C 'Default' tmëU
       'Duplicate...' sCb 'Duplicate Configuration' ܲJ 'IP
       Masq' (άO䥦ADoOӯStmr)Ai|O
       'Deafault copy' 򪺡CMU 'OK' sAH 'Make Active' sC
    4. q 'Connect via:' uX椤 'Ethernet'C
    5. q 'Configure:' uXܾAءCpGADӿ擄A
       AiӭsܧA 'Default' tmM}CڥΪO 'Manually'
       C
    6. b 'IP Address:' JA Mac  IP } (192.168.1.x, 1 < x <
       255)C
    7. b 'Subnet mask:' J 255.255.255.0C
    8. b 'Router address:' J 192.168.1.1 C
    9. b 'Name server addr.:' JAW٦A IP }C
   10. b 'Implicit Search Path:' ̪ 'Starting domain name' JA
       W(Ҧp 'microsoft.com')C
   11. UӪBJOܩʪCTȥiɭPY~欰CpGA
       TwA̦ndUťաAnĿCpGݭnܡAh줤
       TCNڥثeҪSkb TCP/IP ܵiDtΤnϥΥHe
       Lt@ "Hosts" ɮסCpGADܡAګܦFѡCpGA
       ݭn 802.3 ج[ܴNĿ '802.3'C
   12. U 'Options...' HTw TCP/IP @ΡCڨϥ 'Load only when
       needed' ﶵCpGAõ TCP/IP ε{\hӥsҰʧA
       AANo{ 'Load only when needed' |/CAO
       ޲zįC惡رN TCP/IP w`OQJKϥΡCpG
       FATCP/IP w|۰ʦbݭnɸJæbݭnCJP񪺹L
       {iϧAOܪHC
   13. AiH ping @UA Linux DӨӴպsuCpGA MacTCP
       Watcher KO{AU 'Ping' sAMbuXܲJA
       Linux Da}(192.168.1.1)C(ouLOϰsաAA
        ping ~@ɡC)
   14. AiHb System Folder إߤ@ Hosts ɮץHKAiHϥΧAϰ
       ̾DW١Coɮץiwg٥sbA System Folder 
       CpGܡAӷ|]t@(ѱ)dҶئӧAiHھڧA
       nӭקCpG٨SܡAAiHq@bB@ MacTCP tΤ^
       AΦۤvؤ@(` Unix  /etc/hosts ɮ׮榡Ab RFC 952 y
       z)C@AإߤFoɮסA} TCP/IP control panelAU 'Select
       Hosts File...' sAMᥴ} Hosts ɮסC
   15. ܲαq File 椤 'Close'  'Quit' MU 'Save' H
       xsAҰܡC
   16. oǧܷ|ߨͮġAs}]L`C
       
  tmϥ DNS  Novell 
  
    1. pGA٨SAAӺ౵w˾AXʵ{A̦n{bN@C
    2. q [41]ftp.novell.com/pub/updates/unixconn/lwp5 ^ tcpip16.exeC
    3.
s c:\nwclient\startnet.bat
       : (here is a copy of mine)
SET NWLANGUAGE=ENGLISH
LH LSL.COM
LH KTC2000.COM
LH IPXODI.COM
LH tcpip
LH VLM.EXE
F:
    4.
s c:\nwclient\net.cfg
       : (NXʵ{אּAA i.e. NE2000)
Link Driver KTC2000
        Protocol IPX 0 ETHERNET_802.3
        Frame ETHERNET_802.3
        Frame Ethernet_II
        FRAME Ethernet_802.2

NetWare DOS Requester
           FIRST NETWORK DRIVE = F
           USE DEFAULTS = OFF
           VLM = CONN.VLM
           VLM = IPXNCP.VLM
           VLM = TRAN.VLM
           VLM = SECURITY.VLM
           VLM = NDS.VLM
           VLM = BIND.VLM
           VLM = NWP.VLM
           VLM = FIO.VLM
           VLM = GENERAL.VLM
           VLM = REDIR.VLM
           VLM = PRINT.VLM
           VLM = NETX.VLM

Link Support
        Buffers 8 1500
        MemPool 4096

Protocol TCPIP
        PATH SCRIPT     C:\NET\SCRIPT
        PATH PROFILE    C:\NET\PROFILE
        PATH LWP_CFG    C:\NET\HSTACC
        PATH TCP_CFG    C:\NET\TCP
        ip_address      xxx.xxx.xxx.xxx
        ip_router       xxx.xxx.xxx.xxx
    5. ̫إ
c:\bin\resolv.cfg
       :
SEARCH DNS HOSTS SEQUENTIAL
NAMESERVER 207.103.0.2
NAMESERVER 207.103.11.9
    6. ڧƱoǬYǨϥ Novell HUC٦Ao Netware 3.1x
        4.x ΡC
       
  tm OS/2 Warp
  
    1. pGA٨SAAӺ౵w˾AXʵ{A̦n{bN@C
    2. pGA٨S TCP/IP qTwܲ{bNˡC
    3. } Programms/TCP/IP (LAN) / TCP/IP ]w
    4. b 'Network' [WA TCP/IP }ó]wA netmask
       (255.255.255.0)
    5. b 'Routing' U 'Add'CN Type ]w 'default' æb
       'Router Address' 줤JA Linux D IP } (192.168.1.1)
       C
    6. N 'Hosts' ]wPA Linux DϥάۦP DNS (W٦A)}
       C
    7.  TCP/IP xCbUӪD^ yesC
    8. sҰʧAt
    9. AiH ping A Linux DHպtmCb 'OS/2 RO' W
       J 'ping 192.168.1.1'CpG ping ʥ]@NSDC
       
  tm䥦t
  
   ۦP޿iAΩtm䥦xCd\Wzp`C pGA
   g䥦@~tΪtmA аeԲӪإ߫ި
   [42]ambrose@writeme.com  [43]dranch@trinnet.netC
   
3.4 tm IP e(Forwarding)覡

   ثeAAӤwgw˦n֤ߥHΨ䥦ݭnMA]JFAҲաC
   PɡA䥦 IP }AhDAHΡ@DNS ]ӥ]wC
   
   {bAߤ@ѤUnƬOϥ IP ueAʥ]A
   :
   
     ** oiHγ\hP覡ӹFCUCĳPҤlڨӻΡAA
     i঳PDNAԸ`аѦ 4.4 ` ipchains(2.2.x) /
     ipfwadm(2.0.x) uWUC **
     
     ** `ȴѧAإ IP ˥\һݪֳ̤WhA@ǦwҶqå]
     tihC jPĳA@ǮɶhsAWhӥ[jwʡC
     **
     
  Linux 2.2.x ֤
  
   Ipfwadm wgLkb 2.2.x ֤ߤBz IP ʥ]˳WhAЧ
   ipchainsC
   
ipchains -P forward DENY
ipchains -A forward -s yyy.yyy.yyy.yyy/x -j MASQ

   䤤 x AlөwAUCƦr@A yyy.yyy.yyy.yyy hOA
   }C
   
netmask         | x  | Subnet
~~~~~~~~~~~~~~~~|~~~~|~~~~~~~~~~~~~~~
255.0.0.0       | 8  | Class A
255.255.0.0     | 16 | Class B
255.255.255.0   | 24 | Class C
255.255.255.255 | 32 | Point-to-point

   A]iHϥγoخ榡 yyy.yyy.yyy.yyy/xxx.xxx.xxx.xxx, 䤤
   xxx.xxx.xxx.xxx wAlBnAp 255.255.255.0C
   
   ҦpApGڬOb@ class C lWAڱoJ:
   
ipchains -P forward DENY
ipchains -A forward -s 192.168.1.0/24 -j MASQ

   
   
ipchains -P forward DENY
ipchains -A forward -s 192.168.1.0/255.255.255.0 -j MASQ

   A]iHOCx]wC ҦpApGڷQ 192.168.1.2 
   192.168.1.8 sںA\䥦ϥΪܡAڱoJ:
   
ipchains -P forward DENY
ipchains -A forward -s 192.168.1.2/32 -j MASQ
ipchains -A forward -s 192.168.1.8/32 -j MASQ

   nAw]覡(policy)w(masquerading)  _hiHޱL̪
   e|(routing) HNL(tunnel)AhDAH˥L̪
   !
   
   P˦aAAiHoǥ[J /etc/rc.d/rc.local ɮסA@ӧAw
   rc ɮסAάObCAݭn IP Masquerade ɤʰ椧C
   
    ipchains ԲӨϥΤkAаѦ [44]Linux IPCHAINS HOWTO
   
  Linux 2.0.x ֤
  
ipfwadm -F -p deny
ipfwadm -F -a m -S yyy.yyy.yyy.yyy/x -D 0.0.0.0/0

   
   
ipfwadm -F -p deny
ipfwadm -F -a masquerade -S yyy.yyy.yyy.yyy/x -D 0.0.0.0/0

   䤤 x AlөwAUCƦr@A yyy.yyy.yyy.yyy hOA
   }C
   
netmask         | x  | Subnet
~~~~~~~~~~~~~~~~|~~~~|~~~~~~~~~~~~~~~
255.0.0.0       | 8  | Class A
255.255.0.0     | 16 | Class B
255.255.255.0   | 24 | Class C
255.255.255.255 | 32 | Point-to-point

   A]iHϥγoخ榡 yyy.yyy.yyy.yyy/xxx.xxx.xxx.xxx, 䤤
   xxx.xxx.xxx.xxx wAlBnAp 255.255.255.0C
   
   ҦpApGڬOb@ class C lWAڱoJ:
   
ipfwadm -F -p deny
ipfwadm -F -a m -S 192.168.1.0/24 -D 0.0.0.0/0

   ] bootp ШDʥ]SXk IP's AȤݨäD}Ab
   /W bootp AHb deny eUCO:
   
ipfwadm -I -a accept -S 0/0 68 -D 0/0 67 -W bootp_clients_net_if_name -P udp

   A]iHOCx]wC ҦpApGڷQ 192.168.1.2 
   192.168.1.8 sںA\䥦ϥΪܡAڱoJ:
   
ipfwadm -F -p deny
ipfwadm -F -a m -S 192.168.1.2/32 -D 0.0.0.0/0
ipfwadm -F -a m -S 192.168.1.8/32 -D 0.0.0.0/0

   `~Oo˪Ĥ@O
ipfwadm -F -p masquerade

   nAw]覡(policy)w(masquerading)  _hiHޱL̪
   e|(routing) HNL(tunnel)AhDAH˥L̪
   !
   
   P˦aAAiHoǥ[J /etc/rc.d/rc.local ɮסA@ӧAw
   rc ɮסAάObCAݭn IP Masquerade ɤʰ椧C
   
   о\Ū 4.4 ` Ipfwadm ԲӫޡC
   
3.5  IP Masquerade

   boǤu@A{bOոլݪɭԤFCTwA Linux Dں
   suOqC
   
   AiHb䥦Wյs@'ں!!!' WAݬO_ਣC
   ĳĤ@ծɨϥ IP }ӤnΥDW١A]A DNS ]wi
   TC
   
   ҦpAAiHϥ [45]http://152.19.254.81/mdw/linux.html Ӧs Linux
   pe http://metalab.unc.edu/mdw/linux.html
   
   pGAݨ The Linux Documentation Project rˡA򮥳! iHB@
   F! ۧAiHϥΥDWٸոլݡAMO telnet, ftp, RealAudio, True
   SpeechAHΥ IP Masquerade 䴩FC
   
   ثeA٤bW]wWo͹LDAӨǪUɶoӵ
   \B@HPNoǳ]wC
   
4. 䥦 IP Masquerade Dγn䴩

4.1 IP Masquerade D

   YǨw{bLktX masquerading ϥΡA]̤O]𸹪@
   ƱANOb}ΰ𸹪Ƭy̽sX  ᭱oǨwݭnb
   masquerading {X̫إ߯SwNz{ϥ̯B@C
   
4.2 iJtΪA(incoming services)

   Masquerading Bz~ɪAȽШD (incoming services)C u
   kह\̡AoP masquerading LAӥBbOзǪ
   C
   
   pGAänDתwʨAiH²a(redirect)oǰC X
   PkiHo  ڨϥΤ@קL redir {(ڧƱo{
   ܧִNq sunsite Ψ mirrors o)C pGAƱ~ɶiJtΪ
   AȽШDYص{ת{(authorisation) AiHb redir 
   h(0.7 or above) ϥ TCP wrappers άO Xinetd Ӥ\Sw IP }qLA
   ΨϥΨ䥦uCTIS u㶰OMuθTnaC
   
   hԸ`ib [46]IP Masquerade Resource C
   
   N|[W@p`heAȪTC
   
4.3 w䴩ȤݳnHΨ䥦]w譱`Nƶ

     ** UCNAQ@FCig Linux IP masquerading B@
     {аѦ [47]o M [48]IP Masquerade Resource Hoi@BӸ`
     C **
     
   @뻡ӡAϥζǿ鱱w(TCP) άOϥΪ̩wqƨw (UDP)ε{
   ӳB@C pGAε{P IP Masquerade ۮeĳA
   ܩΰDAЫX Lee Nevo @ [49]iP Linux IP masquerading B@
   ε{ C
   
  iHϥΪȤݳn
  
   @Ȥݳn
   
   HTTP
          Ҧ䴩OAs
          
   POP & SMTP
          Ҧ䴩OAqlln
          
   Telnet
          Ҧ䴩OAñJ@~
          
   FTP
          Ҧ䴩OAtX ip_masq_ftp.o Ҳ(OҦxtXU
          ثȤݳnFҦpYǤϥ ws_ftp32 ĲΪOoϥ
          netscape iJ)
          
   Archie
          Ҧ䴩OAɮ׷jMn(ëDҦ archie Ȥݳn鳣
          )
          
   NNTP (USENET)
          Ҧ䴩OAsDn
          
   VRML
          Windows (iҦ䴩OiH)As
          
   traceroute
          DnO UNIX tCOAYܺإiLkB@
          
   ping
          ҦOAtX ICMP ׸
          
   anything based on IRC
          Ҧ䴩OAtX ip_masq_irc.o Ҳ
          
   Gopher client
          Ҧ䴩O
          
   WAIS client
          Ҧ䴩O
          
   hCȤݳn
   
   Real Audio Player
          Windows, ƬyTAtXJ ip_masq_raudio Ҳ
          
   True Speech Player 1.1b
          Windows, ƬyT
          
   Internet Wave Player
          Windows, ƬyT
          
   Worlds Chat 0.9a
          Windows, ȤЦAݥ(3D chat) {
          
   Alpha Worlds
          Windows, Windows, ȤЦAݥ(3D chat) {
          
   Powwow
          Windows, IIrnժOqTApGAIsOHAH̥iHPA
          ͡AOL̤IsAC
          
   CU-SeeMe
          Ҧ䴩OAtXJ cuseeme ҲաAԲӲӸ`а \ [50]IP
          Masquerade Resource
          
   VDOLive
          Windows, tX vdolive ׸
          
   `N: YϤOѧAIsOHAϥ ipautofw MYǫȤݳn鹳O
   IPhone H Powwow i٬OiHB@(Ѿ\ 4.6 `)
   
   䥦Ȥݳn
   
   NCSA Telnet 2.3.08
          DOS, ]t telnet, ftp, ping @ծMC
          
   PC-anywhere for windows 2.0
          MS-Windows, g TCP/IP ݻ PC Aub@ȤݦӫDD
          ΤU~B@
          
   Socket Watch
          ϥ ntp  ɶw
          
   Linux net-acct package
          Linux, b޲zM
          
  LkϥΪȤݳn
  
   Intel Internet Phone Beta 2
          iHsWnuV(~)ǰe
          
   Intel Streaming Media Viewer Beta 1
          LksWA
          
   Netscape CoolTalk
          Lks
          
   talk,ntalk
          oN|B@  ݭng@֤ߥNz{C
          
   WebPhone
          ثeLkB@(FXk}])C
          
   X
          SչLAڷQDHإߤ@M X Nz{_hLkB@Ao
          iO masquerading {X~@ӥ~{C@B@覡
          Oϥ ssh @쵲åBϥΨ䤺 X Nz\Ӱ!
          
  wչLiH@䥦O/@~t
  
     * Linux
     * Solaris
     * Windows 95
     * Windows NT (both workstation and server)
     * Windows For Workgroup 3.11 (with TCP/IP package)
     * Windows 3.1 (with Chameleon package)
     * Novel 4.01 Server
     * OS/2 (including Warp v3)
     * Macintosh OS (with MacTCP or Open Transport)
     * DOS (with NCSA Telnet package, DOS Trumpet works partially)
     * Amiga (with AmiTCP or AS225-stack)
     * VAX Stations 3520 and 3100 with UCX (TCP/IP stack for VMS)
     * Alpha/AXP with Linux/Redhat
     * SCO Openserver (v3.2.4.2 and 5)
     * IBM RS/6000 running AIX
       
   򥻤WAҦ䴩 TCP/IP ӥB\AwXD/Ѿ(gateway/router)@
   ~tγӯM IP Masquerade @_u@C
   
4.4 IP ޲z (ipfwadm)

   o@` ipfwadm `JϥΫޡC
   
   oO@ӵbTw PPP } PPP su᭱/˨tΨϥΪ]wCH
   (trusted) ɭ 192.168.255.1, PPP ɭwgקLHקKǿ :) C
   OCXC@ӶiJ(incoming)HΰeX(outgoing)ɭӧXܧ󻼰e
   |(stuffed routing) H/άO(masquerading)oǭ IP spoofing
   ޥCPɥST\F賣OT!
   
#!/bin/sh
#
# /etc/rc.d/rc.firewall,  wqtmAq rc.local C
#

PATH=/sbin:/bin:/usr/sbin:/usr/bin

# եΡAݤ@qɶMMҦWhC
# pGAƱ樾Q۰NUCX檺ѡC
# (sleep 600; \
# ipfwadm -I -f; \
# ipfwadm -I -p accept; \
# ipfwadm -O -f; \
# ipfwadm -O -p accept; \
# ipfwadm -F -f; \
# ipfwadm -F -p accept; \
# ) &

# iJ˹hD]wAsHγ]wڵ(policy)CƹW
# w]SYA]NƱڵHΰOҦWh
ipfwadm -I -f
ipfwadm -I -p deny
# ˹hDa(local) ɭAϰ̪A\s
# a
ipfwadm -I -a accept -V 192.168.255.1 -S 192.168.0.0/16 -D 0.0.0.0/0
# ˹hD(remote)ɭAn٬Oϰ̪AIP spoofing
# ڵ
ipfwadm -I -a deny -V your.static.PPP.address -S 192.168.0.0/16 -D 0.0.0.0/0 -o
# ˹hDݬɭAӷA\eTw (permanent) PPP
# }
ipfwadm -I -a accept -V your.static.PPP.address -S 0.0.0.0/0 -D your.static.PPP
.address/32
# ^(loopback)ɭO\
ipfwadm -I -a accept -V 127.0.0.1 -S 0.0.0.0/0 -D 0.0.0.0/0
# ҦWhA䥦iJ覡|QڵðOCiS
# OΪﶵoiHN
ipfwadm -I -a deny -S 0.0.0.0/0 -D 0.0.0.0/0 -o

# eX˹hD]wAsHγ]wڵ(policy)CƹW
# w]SYA]NƱڵHΰOҦWh
ipfwadm -O -f
ipfwadm -O -p deny
# aɭA\ӷeXܰϰ
ipfwadm -O -a accept -V 192.168.255.1 -S 0.0.0.0/0 -D 192.168.0.0/16
# ݬɭeXܰϰAstuffed routing Aڵ
ipfwadm -O -a deny -V your.static.PPP.address -S 0.0.0.0/0 -D 192.168.0.0/16 -o
# ϰqݬɭeXAstuffed masqueradingAڵ
ipfwadm -O -a deny -V your.static.PPP.address -S 192.168.0.0/16 -D 0.0.0.0/0 -o
# ϰqݬɭeXAstuffed masqueradingAڵ
ipfwadm -O -a deny -V your.static.PPP.address -S 0.0.0.0/0 -D 192.168.0.0/16 -o
# 䥦ݬɭeXF賣O\
ipfwadm -O -a accept -V your.static.PPP.address -S your.static.PPP.address/32 -
D 0.0.0.0/0
# ^(loopback)ɭO\
ipfwadm -O -a accept -V 127.0.0.1 -S 0.0.0.0/0 -D 0.0.0.0/0
# ҦWhA䥦eX覡|QڵðOCiS
# OΪﶵoiHN
ipfwadm -O -a deny -S 0.0.0.0/0 -D 0.0.0.0/0 -o

# ˹hDe]wAsHγ]wڵ(policy)CƹW
# w]SYA]NƱڵHΰOҦWh
ipfwadm -F -f
ipfwadm -F -p deny
# ˰ϰqaɭeXܥa誺
ipfwadm -F -a masquerade -W ppp0 -S 192.168.0.0/16 -D 0.0.0.0/0
# ҦWhA䥦e覡|QڵðOCiS
# OΪﶵoiHN
ipfwadm -F -a deny -S 0.0.0.0/0 -D 0.0.0.0/0 -o

   AiHϥ -I, -O άO -F ӱYSw`IyqCOooǳWhO
   WUy -a N"[(append)"ثe{WhҥH󭭨
   b(global)WheX{CҦp(SչL) :-
   
   ϥ -I WhCiOt׳̧֪Ouϰ̪A
   MiHs"T"`ICMAiQ\o˪զXC
   
... start of -I rules ...
# ڵðOaɭAϰ̪q 204.50.10.13
ipfwadm -I -a reject -V 192.168.255.1 -S 192.168.0.0/16 -D 204.50.10.13/32 -o
# aɭAϰ̪A\qa
ipfwadm -I -a accept -V 192.168.255.1 -S 192.168.0.0/16 -D 0.0.0.0/0
... end of -I rules ...

   ϥ -O WhC̺CA]ʥ]gL˦oӳWhsT
   `IC
   
... start of -O rules ...
# ڵðOeX 204.50.10.13 
ipfwadm -O -a reject -V your.static.PPP.address -S your.static.PPP.address/32 -
D 204.50.10.13/32 -o
# \䥦ݬɭeXF
ipfwadm -O -a accept -V your.static.PPP.address -S your.static.PPP.address/32 -
D 0.0.0.0/0
... end of -O rules ...

   ϥ -F WhCi -I CӳoMu˪(Ҧp)A
   𤴵MiHoT`IC
   
... start of -F rules ...
# ڵðO PPP  ɭeXqϰ 204.50.10.13 ơC
ipfwadm -F -a reject -W ppp0 -S 192.168.0.0/16 -D 204.50.10.13/32 -o
# ˥aɭqϰeXܥa誺ơC
ipfwadm -F -a masquerade -W ppp0 -S 192.168.0.0/16 -D 0.0.0.0/0
... end of -F rules ...

   ݭnӯSwWhӤ\ 192.168.0.0/16 q 204.50.11.0, o[\
   WhC
   
   @إHWkiHɭ]wWzWhCҦpiHϥ -W eth0 ӨN -V
   192.168.255.1AiHϥ -W ppp0 ӨN -V your.static.PPP.addressCӤH
   ̭ܳnC
   
4.5 IP  (ipchains)

   oӥDnO 2.2.x ֤ߨϥΪWh޲zu([W@ӭ׸ɫ]ib
   2.0.x WB@)C
   
   ڭ̷|֧s`A@Ǩϥ ipchains dҡC
   
   Ӹ`аѦ [51]Linux IP Firewalling Chains page H [52]Linux
   IPCHAINS HOWTOC
   
4.6 IP Masquerade HλݨD(Demand-Dial-Up)

    1. pGAQ]w۰ʼWںA diald demand M
       N|OܴΪuC
    2. n]w diald, Ьd [53]Setting Up Diald for Linux Page 
    3. @ diald H IP masq ]wAAiHbȤݾWҰ
       web, telnet άO ftp suC
    4. Diald N|iJtΪШDAMἷA ISP ëإ߳suC
    5. Ĥ@suN|o͹O(timeout) ΡCpGAϥ񦡪ƾھ
       oOLiקKC إ߼ƾھsH PPP suҪOɶN|ϧA
       Ȥݳn餣@C pGAϥ ISDN suoOiHקKCAouO
       Ȥݳn{檺{ǦAsҰʧYiC
       
4.7 IPautofw ʥ]e{

   [54]IPautofw O@ӵ Linux masquerading ϥΪ@ TCP  UDP e{
   C@ϥλݭn UDP M󪺮ɭԡAݭnJSw ip_masq Ҳ
   Fip_masq_raudio, ip_masq_cuseeme,... Ipautofw H@ƪ覡B@A
   N|e]toε{SwҲճ|eƬyACpGS
   Ta޲zoiywW|}C
   
4.8 CU-SeeMe P Linux IP-Masquerade ²u

    [55]Michael Owings ҴѡC
   
  ²
  
     ` CU-SeeMe (]A Cornell  White Pine ) P Linux 
     IP ˥\@_B@kC
     
   CU-SeeMe O@ӮWT|ĳnA Windows  Macintosh ثȤݡC
   @ӧKOiq [56]Cornell University oCӷ~[jiq
   [57]White Pine Software oC
   
   IP ˤ\@ΧhbϰWu@""b@sں
   Linux DC ϰu@iHXGzqaκںAYϥS
   Xk IP a}C Linux Dgqں~eʥ]Aϥ
   ݰ_ӴNOqo Linux oX@ˡC eiӪ^ʥ]]Qg
   eܤTu@WC owƨϱo\hںε{iHzq
   aqu@WC MӡAYε{ӻ( CU-SeeMe),
   Linux ˵{ݭn@ǤpޥU~ϱoʥ]eoHTB@C o
   Uޥq`Ӧ۩YǯS֤ߥiJҲաC  IP-Masquerading 
   hTAаѦ [58]The Linux IP Masquerading WebsiteC
   
  B@
  
   AݭnAatm֤ߡCAӥ[J IP-Masquerading  IP
   AutoForwarding 䴩CIP Autoforwarding X{b 2.0.30 Ψ᪺֤
   ﶵ -- 󦭪֤ߧAݭn׸ɡC Ѩ [59]Linux IP Masquerade Resource
    IP-Autoforwarding TޡC
   
   UӡAAno̷s ip_masq_cuseeme.cC oigѰΦW FTP q
   [60]ftp://ftp.swampgas.com/pub/cuseeme/ip_masq_cuseeme.c oC oӷs
   Ҳդ]wg[J 2.0.31 ֤ߤCAiHηsӨN֤ߤ
   C ip_masq_cuseeme.c q` Linux ֤߭lX net/ipv4 ؿC A
   sĶæw˦ҲաC
   
   UӡAAإ UDP  7648-7649 ۰epU:
   
ipautofw -A -r udp 7648 7649 -c udp 7648 -u

   
   
ipautofw -A -r udp 7648 7649 -h www.xxx.yyy.zzz

   Ĥ@ӧΦ\IsQΰ 7648 (Dn cu-seeme )iXu@C ĤG
   Өϥ ipautofw 覡Ȥp cu-seeme iX www.xxx.yyy.zzzC ڸwe
   oاΦA]󦳼uʦӥBSnw@ӯSOu@ IPC MӡA
   oӤ覡|nD@u@বIseeXIsC
   
   `Noؤ覡NȤݾ UDP  7648-7649 }񵹥~ -- Mo
   ܩYwMIAA٬OSOpߡC
   
   ̫AHUkJs ip_masq_cuseeme Ҳ:
   
modprobe ip_masq_cuseeme

   {bAiHqAϰW@Q˪W CU-SeeMe ós컷ݪ
   ^(reflector)WAΥt@ CU-SeeMe ϥΪ̡C AӤ]iHIs
   C`N~ɪIs̥ϥΧA Linux XD IP, ӤOQˤu@
   IPC
   
  /ĵi
  
  KXO@^
  
   ثeSkϥΡC White Pine ϥΨӷ IP (ѫȤݵ{p)bǰe
   eNKXsXO@C ]ڭ̧gF}A^ϥο~ӷ IP ӸѽXA
   ]o줣TKXC D White Pine ܥḺKXsX(ڤwg
   ĳLF)AάOL@N}ḺKXsXHKگ[
   ip_masq_cuseemeC ѩ᭱@ӿkiʫܤpA]ګD`yݨo
   󪺤HP White Pine pëĳḺĥΫe@ا@kC ]yq۷
   Ahçڭ̯_ͨqllHϦDiJ White Pine 
   uBzW椤C
   
   P Thomas Griwenka ڳoơC
   
  ^
  
   AզbA] ip_masq_cuseeme  ipautoforwarding  7648 ۦP
   W^(reflector)C oSΡA]̳ݭntm 7648C 
   ̥Υt@iFںDӰAάOb^eU CU-SeeMe
   Ȥݤ䴩C
   
  h CU-SeeMe ϥΪ
  
   A@h CU-SeeMe ϥΪ̦Pɦb@ӰϰWC oOѩ
   CU-SeeMe xTaϥΰ 7648, ϱobϰ@ȯ঳@xu@
   (ea)QɦVC
   
   ϥ -c (control port) өIs ipautofw, AiHקKw@Twu@
   }hϥ CU-SeeMe -- Ĥ@ϥα 7648 eXF誺u@|Q
   wӦ۰ 7648-7649 yqC pGgLkou@A
   ΰ 7648, t@u@NiۨϥΡC
   
  U]w CU-SeeMe
  
   YשΰDмgH [61]mikey@swampgas.comC Ϊ̦pGA@N
   AAiH [62]zL CU-SeeMe өIsڡC
   
4.9 䥦u

   ڭ̷|֧s`[Wh䥦ˬup ipportfw H masqadmin
   C
   
5. `Dѵ

   pGAQ󦳥Ϊ`DPѵAмgH [63]ambrose@writeme.com 
   [64]dranch@trinnet.netC вMaDêWAѵC!
   
5.1 IP Masquerade _MʺAtm IP @PB@?

   OAMA ISP ʺAtm IP, q`OѤ@ DHCP At}@
   _B@C unA@ӦXkں}ANB@CMATw IP @
   ˨SDC
   
5.2 گϥμƾھADSL, ìPsuӳsںèϥ IP Masquerade ?

   MAun Linux 䴩ӺɭANB@C
   
5.3 IP Masquerade 䴩ε{?

   nO@"Ϊε{"CO۷xC LAj`ں
   ε{Q䴩AҦps(Netscape, MSIE ), ftp ( WS_FTP), Real
   Audio, telnet, SSH, POP3 (H{ - Pine, Outlook ), SMTP(eH{
   ), C
   
   ϥνwίSsu覡ε{AҦpT|ĳnNݭnSOU
   uC
   
   i@BӸ`AаѦ Lee Nevo @ [65]applications that work thru
   Linux IP masqueradingC
   
5.4 ڦpb Redhat, Debian, Slackware ϥ IP Masquerade O?

   קAϥΦصoMA󤤴yzkӯAΡC YǮMi]
   tF GUI άOSO]wɮׯ²ưtmBJC ڭ̬OɤOogo
   Aγ̤@ƪΡC
   
5.5 ڤɯŨ 2.2.x ֤ߡA IP Masquerade ΤF?

   ]A Linux DwgAasWںPAAXƧA
   ˬd:
   
     * TwAwsĶøJnSʻPҲաCѨe`C
     * ˬd /usr/src/linux/Documentation/Changes ýTwAwˤF̧CݨD
       uC
     * TwA}F IP eCյ۰
       
echo "1" > /proc/sys/net/ipv4/ip_forwarding

     * Aϥ [66]ipchains ӳBz IP ˤΨWhC
     * Nӳ]wtmL{A@! ܦhɭԥuOrάOAF@ӷM
       ~C
       
5.6 ڤwgɯŨ 2.0.30 ᪺֤ߡA IP Masquerade ٤?

   ]A Linux DwgAasWںPAAXƧA
   ˬd:
   
     * TwAwsĶøJnSʻPҲաCѨe`C
     * ˬd /usr/src/linux/Documentation/Changes ýTwAwˤF̧CݨD
       uC
     * TwA}F IP eCյ۰
       
echo "1" > /proc/sys/net/ipv4/ip_forwarding

     * Aϥ [67]ipfwadm ӳBz IP ˤΨWhCnb 2.0.x ϥ
       ipchains ܧA[W׸ɡC
     * Nӳ]wtmL{A@! ܦhɭԥuOrάOAF@ӷM
       ~C
       
5.7 ڵLk IP Masquerade B@!  Windows xܶ?

   ҥHAn@ӥib̧CwݨDϥΪKOAiaAĲvѨMסA
   QbYӻݭn󰪵wACĲvBia? (AOAگuJLo
   ˪g ;-) )
   
   naAOAơCηjM MS Proxy Server, Wingate, άݬ
   www.winfiles.comC OOڧiDAC
   
5.8 ˬdLکҦ]wFALk IP Masquerade u@Cڸӫ?

     * NR@UCAۤv@M@بå𮧤@UAMոդUĳC
     * ݤ@U [68]IP Masquerade Mailing List Archive, jAnפwg
       bۧAFC
     * ADe IP Masquerade qH׾¤WAӸ`ЬݤU@hDC ж
       bALk쵪׮ɤ~o򰵡C
     * b Linux Q׸soݡC
     * gH [69]ambrose@writeme.com  [70]dranch@trinnet.netC PɰeH
       ڭ̧A|Ϊ|o^CDavid ^HpΡAܩڪ^
       ɶAmC
     * AˬdA]w :-)
       
5.9 ڦp[J IP Masquerade qH׾?

   n[J IP Masquerade qH׾ªܡAgH
   [71]masq-subscribe@indyramp.comC
   
   DPH󤺮eNQCoiϱoAӦ۽׾ªC@ӰTC pGAݭn
   ܡAwAϥΦ覡CpGiHܡAЧκذ(digest)C ϥκ
   ϥiAtC`NAuϥΧAΨӭq\b/}oeHC
   
   QohOAgH [72]masq-help@tori.indyramp.comC
   
5.10 ڷQU IP Masquerade oiCڸӫ?

   gH [73]masq-dev-subscribe@tori.indyramp.com (άOذϧΦAϥ
   [74]masq-dev-digest-subscribe@tori.indyramp.com)C [J IP
   Masquerading DEVELOPERS qH׾¨ýбШ䰶j}o̡C
   
   Ob߰ݻP IP Masquerade oiLD!!!!
   
5.11 b̥ih IP Masquerade T?

   Aib David ΧڴL [75]Linux IP Masquerade Resource h IP
   Masquerade TCѨ 6.2 p`C
   
   A]ib Indyramp Consulting @ [76]The Semi-Original Linux IP
   Masquerading Web Site hTCo]O IP Masquerade qH׾ª
   aC
   
5.12 ڷQ½Ķ󦨨䥦yAڸӫ?

   ХTwAQ½Ķy٨S䥦HLC @io½ĶCiq
   [77]Linux IP Masquerade Resource oC
   
   gHڨ [78]ambrose@writeme.com, ڷ|H̷s SGML lɵAC
   
5.13 oILɤFAA٦b@?A[ih ... T? ﵽp
?

   OA󦳳Q@C]u@ϧڤӦӨSӦhɶboϧڷP
   줺AګܩpC MӡAF David Ranch [J󪺺@Ap
   C
   
   pGAıoY@DDQ[󤤡AмgHڤ DavidC ̦nAiHѸ
   TCpGXAܧڤ David |oT[󤤡CD`P§A^mC
   
   ڭ̤]@ǷsIlPpӧioAO]tP]wרұ
   QA hwʡAipchains ϥΡAipfwadm/ipchains WhdҡAh
   `DPѵA HΥ]thwPeu㹳O masqadmin C
   pGAıoAiHܡAоްC¡C
   
5.14 ڲש IP Masquerade ʤFAn! ڷQ§A̡Aڸӫ?

   P³oǵoį÷PEL̩ҧJɶPVOCgHڭ̨ڭ̪DA
   hּ֡C V䥦H Linux L̸ѨMDC
   
6. 䥦

6.1 Ϊ귽

     * [79]IP Masquerade Resource page hإ IP Masquerade TC
     * [80]IP masquerade mailing list archive ]t̪eqH׾¤WH
       C
     * ֤ 2.2.x P 2.0.x  [81]Linux IP Masquerade mini HOWTOC
     * pGAΧª֤ߡAЬ [82]IP Masquerade HOWTO for kernel 1.2.x
     * [83]IP masquerade FAQ YǤ@몺TC
     * [84]Linux IPCHAINS HOWTO 
       [85]http://www.rustcorp.com/linux/ipchains/ \h ipchains 
       ΪTAæ ipchains lXΤGiɡC
     * [86]X/OS Ipfwadm page ]t ipfwadm M󪺭lXAɡAΨ䥦
       TC
     *  Lee Nevo Һ@ [87]iP Linux IP masquerading B@
       { ѴܻPޥϱoε{P IP Masquerade B@C
     * The [88]LDP Network Administrator's Guide oOsճ]w
       nTC
     * [89]Trinity OS Doc, @ Linux ۷ezѪޡC
     * [90]Linux NET-3 HOWTO ]\h Linux 譱ΪTC
     * [91]Linux ISP Hookup HOWTO H [92]Linux PPP HOWTO Ap
       Linux DsWںTC
     * [93]Linux Ethernet-Howto ]wAӺϰܴΪT
       C
     * A]i [94]Linux Firewalling and Proxy Server HOWTO C
     * [95]Linux Kernel HOWTO N|ާAsĶ֤ߪL{C
     * 䥦 [96]Linux HOWTOs O Kernel HOWTOC
     * iKo USENET sDs: [97]comp.os.linux.networking
       
6.2 Linux IP Masquerade 귽

   [98]Linux IP Masquerade Resource O@MΨӴ Linux IP Masquerade
   TxA]O David Ranch ΧڨӺ@C o䦳 IP Masquerade 
   sTAi]]tb󪺨䥦TC
   
   AibUCaI Linux IP Masquerade Resource:
     * [99]http://ipmasq.cjb.net/, DxAɦ
       [100]http://www.tor.shaw.wave.ca/~ambrose/
     * [101]http://ipmasq2.cjb.net/, ĤG, ɦ
       [102]http://www.geocities.com/SiliconValley/Heights/2288/
       
6.3 P

     * David Ranch, dranch@trinnet.net
       U@ Linux IP Masquerade 귽, ..., cγƸ
       :-)
     * Michael Owings, mikey@swampgas.com
        CU-SeeMe ²uC
     * Gabriel Beitler, gbeitler@aciscorp.com
       on providing section 3.3.8 (setting up Novel)
     * Ed Doolittle, dolittle@math.toronto.edu
       ĳb ipfwadm [W -V ﶵHW[wʡC
     * Matthew Driver, mdriver@cfmeu.asn.au
       on helping extensively on this HOWTO, and providing section 3.3.1
       (setting up Windows 95)
     * Ken Eves, ken@eves.com
       on the FAQ that provides invaluable information for this HOWTO
     * Ed. Lott, edlott@neosoft.com
       for a long list of tested system and software
     * Nigel Metheringham, Nigel.Metheringham@theplanet.net
       on contributing his version of IP Packet Filtering and IP
       Masquerading HOWTO, which make this HOWTO a better and technical
       in-depth document
       section 4.1, 4.2, and others
     * Keith Owens, kaos@ocs.com.au
       on providing an excellent guide on ipfwadm section 4.2
       on correction to ipfwadm -deny option which avoids a security
       hole, and clarified the status of ping over IP Masquerade
     * Rob Pelkey, rpelkey@abacus.bates.edu
       on providing section 3.3.6 and 3.3.7 (setting up MacTCP and Open
       Transport)
     * Harish Pillay, h.pillay@ieee.org
       on providing section 4.5 (dial-on-demand using diald)
     * Mark Purcell, purcell@rmcs.cranfield.ac.uk
       on providing section 4.6 (IPautofw)
     * Ueli Rutishauser, rutish@ibm.net
       on providing section 3.3.9 (setting up OS/2 Warp)
     * John B. (Brent) Williams, forerunner@mercury.net
       on providing section 3.3.7 (setting up Open Transport)
     * Enrique Pessoa Xavier, enrique@labma.ufrj.br
       on the bootp setup suggestion
     * developers of IP Masquerade for this great feature
       
          + Delian Delchev, delian@wfpa.acad.bg
          + Nigel Metheringham, Nigel.Metheringham@theplanet.net
          + Keith Owens, kaos@ocs.com.au
          + Jeanette Pauline Middelink, middelin@polyware.iaf.nl
          + David A. Ranch, trinity@value.net
          + Miquel van Smoorenburg, miquels@q.cistron.nl
          + Jos Vos, jos@xos.nl
          + Paul Russell, Paul.Russell@rustcorp.com.au
          + ٦䥦ڧѤF(ڪD)
            
     * Ҧe^XΫĳqH׾¤WϥΪ̡ASOOǳiW~H
       Τw䴩P䴩ȤݪC
     * pGڨS]AYǨϥΪ̰eڪTڷPpCphĳPQ
       keڳo̡AڥuOSɶhTwΪ̧ڤpߥFC ڥ
       ڳ̤jVOXҦeڪTo̡CP§AҡAӧڤ]
       ƱA̧ڪpC
       
6.4 ѦҸ

     * Ken Eves  IP masquerade `ݵ
     * Indyramp Consulting  IP masquerade qH׾
     * X/OS  Ipfwadm 
     * U Linux HOWTOs

References

   1. mailto:ambrose@writeme.com
   2. mailto:dranch@trinnet.net
   3. http://www.phys.ntu.edu.tw/~cwhuang/pub/
   4. mailto:cwhuang@linux.org.tw
   5. mailto:ambrose@writeme.com
   6. mailto:dranch@trinnet.net
   7. http://ipmasq.cjb.net/
   8. http://ipmasq.cjb.net/
   9. http://ipmasq.cjb.net/
  10. http://ipmasq2.cjb.net/
  11. http://ipmasq.cjb.net/index.html#mirror
  12. http://ipmasq.cjb.net/
  13. http://www.kernel.org/
  14. http://metalab.unc.edu/mdw/HOWTO/NET-3-HOWTO.html
  15. http://metalab.unc.edu/mdw/LDP/nag/nag.html
  16. http://www.ecst.csuchico.edu/~dranch/LINUX/TrinityOS.wri
  17. http://metalab.unc.edu/mdw/HOWTO/ISP-Hookup-HOWTO.html
  18. http://metalab.unc.edu/mdw/HOWTO/PPP-HOWTO.html
  19. http://metalab.unc.edu/mdw/HOWTO/mini/DHCP.html
  20. http://metalab.unc.edu/mdw/HOWTO/mini/Cable-Modem.html
  21. http://www.rustcorp.com/linux/ipchains/
  22. http://www.rustcorp.com/linux/ipchains/
  23. http://ipmasq.cjb.net/
  24. http://ipmasq.cjb.net/
  25. http://www.kernel.org/
  26. http://www.pi.se/blox/modules/modules-2.0.0.tar.gz
  27. http://metalab.unc.edu/mdw/HOWTO/NET-3-HOWTO.html
  28. http://metalab.unc.edu/mdw/LDP/nag/nag.html
  29. http://www.ecst.csuchico.edu/~dranch/LINUX/TrinityOS.wri
  30. http://metalab.unc.edu/mdw/HOWTO/ISP-Hookup-HOWTO.html
  31. http://metalab.unc.edu/mdw/HOWTO/PPP-HOWTO.html
  32. http://metalab.unc.edu/mdw/HOWTO/mini/DHCP.html
  33. http://metalab.unc.edu/mdw/HOWTO/mini/Cable-Modem.html
  34. ftp://ftp.xos.nl/pub/linux/ipfwadm/ipfwadm-2.3.0.tar.gz
  35. http://www.xos.nl/linux/ipfwadm/
  36. http://ipmasq.cjb.net/
  37. file://localhost/tmp/Kernel-HOWTO.html
  38. http://ipmasq.cjb.net/
  39. file://localhost/tmp/Kernel-HOWTO.html
  40. http://ipmasq.cjb.net/
  41. file://localhost/tmp/zh-sgmltools.18889/ftp.novell.com/pub/updates/unixconn/lwp5
  42. mailto:ambrose@writeme.com
  43. mailto:dranch@trinnet.net
  44. http://metalab.unc.edu/mdw/HOWTO/IPCHAINS-HOWTO.html
  45. http://152.19.254.81/mdw/linux.html
  46. http://ipmasq.cjb.net/
  47. http://dijon.nais.com/~nevo/masq/
  48. http://ipmasq.cjb.net/
  49. http://dijon.nais.com/~nevo/masq/
  50. http://ipmasq.cjb.net/
  51. http://www.rustcorp.com/linux/ipchains/
  52. http://metalab.unc.edu/mdw/HOWTO/IPCHAINS-HOWTO.html
  53. http://home.pacific.net.sg/~harish/diald.config.html
  54. ftp://ftp.netis.com/pub/members/rlynch/ipautofw.tar.gz
  55. mailto:mikey@swampgas.com
  56. http://cu-seeme.cornell.edu/
  57. http://www.wpine.com/
  58. http://www.indyramp.com/masq/
  59. http://ipmasq.cjb.net/
  60. ftp://ftp.swampgas.com/pub/cuseeme/ip_masq_cuseeme.c
  61. mailto:mikey@swampgas.com
  62. http://www.swampgas.com/vc/vc.htm
  63. mailto:ambrose@writeme.com
  64. mailto:dranch@trinnet.net
  65. http://dijon.nais.com/~nevo/masq/
  66. http://www.rustcorp.com/linux/ipchains/
  67. http://www.xos.nl/
  68. http://home.indyramp.com/lists/masq/
  69. mailto:ambrose@writeme.com
  70. mailto:dranch@trinnet.net
  71. mailto:masq-subscribe@indyramp.com
  72. mailto:masq-help@tori.indyramp.com
  73. mailto:masq-dev-subscribe@tori.indyramp.com
  74. mailto:masq-dev-digest-subscribe@tori.indyramp.com
  75. http://ipmasq.cjb.net/
  76. http://www.indyramp.com/masq/
  77. http://ipmasq.cjb.net/
  78. mailto:ambrose@writeme.com
  79. http://ipmasq.cjb.net/
  80. http://www.indyramp.com/masq/list/
  81. http://ipmasq.cjb.net/ipmasq-HOWTO.html
  82. http://ipmasq.cjb.net/ipmasq-HOWTO-1.2.x.txt
  83. http://www.indyramp.com/masq/ip_masquerade.txt
  84. http://metalab.unc.edu/mdw/HOWTO/IPCHAINS-HOWTO.html
  85. http://www.rustcorp.com/linux/ipchains/
  86. http://www.xos.nl/linux/ipfwadm/
  87. http://dijon.nais.com/~nevo/masq/
  88. http://metalab.unc.edu/mdw/LDP/nag/nag.html
  89. http://www.ecst.csuchico.edu/~dranch/LINUX/TrinityOS.wri
  90. http://metalab.unc.edu/mdw/HOWTO/NET-3-HOWTO.html
  91. http://metalab.unc.edu/mdw/HOWTO/ISP-Hookup-HOWTO.html
  92. http://metalab.unc.edu/mdw/HOWTO/PPP-HOWTO.html
  93. http://metalab.unc.edu/mdw/HOWTO/Ethernet-HOWTO.html
  94. http://metalab.unc.edu/mdw/HOWTO/Firewall-HOWTO.html
  95. http://metalab.unc.edu/mdw/HOWTO/Kernel-HOWTO.html
  96. http://metalab.unc.edu/mdw/HOWTO/HOWTO-INDEX-3.html
  97. news:comp.os.linux.networking
  98. http://ipmasq.cjb.net/
  99. http://ipmasq.cjb.net/
 100. http://www.tor.shaw.wave.ca/~ambrose/
 101. http://ipmasq2.cjb.net/
 102. http://www.geocities.com/SiliconValley/Heights/2288/
