  Firewall Piercing mini-HOWTO
  Francois-Rene Rideau, fare@tunes.org
  v0.3b, 27 November 1998
    hisai@din.or.jp
  4 Sep 1999

  C^[lbgڑĂt@CA[EH[ӎɁAẽlbg
  [NET[rX𗘗p@ē܂Btelnet vgR  PPP
  vgR悹Ď܂B
  ______________________________________________________________________

  ڎ

  1. tL
     1.1 Ƃ
     1.2 @IȂ
     1.3 ӎ

  2. _
     2.1 ͂߂
     2.2 ZLeB̖
     2.3 ɕKvȂ
     2.4 \tgEGÃ_E[h

  3. _𗝉
     3.1 _𖾊mɂ
     3.2 _
     3.3 ɖʓ|Ȃ

  4. ɂ
     4.1 
     4.2 fwprc
     4.3 .fwprcrc

  5. Α猊
     5.1 {Iȍl
     5.2 dq[̂Ƃ̂

  6. Ō̒ӓ_
     6.1 ̑̐ݒ
     6.2 ̃hLg̉ɂ
     6.3 ƂĂ؂ȂƂ̌JԂ --- {łIII

  ______________________________________________________________________

  1.  tL

  1.1.  Ƃ

  ؂ȂƂȂ̂ŁAKǂłIII

  ̃hLg̓eɂāAؐӔC͕܂BǂȏQ
  ĂẢ͎ߎł͂܂B̃hLgɏĂi
  Ƃ邱ƂɂĐ郊XN𗝉łȂȂ΁AėpȂ
  Bpꍇ́AȂ̐ẼRs[^ĂAƖ
  xႪłĂA܂Ђɑz̑Q^Ă܂ȂAƕ
  Bɋ肵ȂłˁB

  1.2.  @IȂ

  Copyright (C) 1998 by Francois-Rene Rideau.

  ̃hLǵAt[\tgEGAłBFree Softweare Foundation
  oĂ GNU General Public License  ł͂ȍ~̔
  ɏ]A̕zz܂͕ύXł܂B

  1.3.  ӎ

  uƂvȊO̕啝ɏC܂ATerm-Firewall mini-
  HOWTO ̒҂ł Barak Pearlmutter   <mailto:bap@cs.unm.edu> ɂ
  ւ񂨐bɂȂ܂Bނ mini-HOWTO ͂̌_Ƃ
  At@CA[EH[ɌJ邱ƂɂāAKvsȏ^
  Ă܂B܂A mini-HOWTO ̎{ɂȂłȂA
  ɂĂ̗݂ɂȂ܂B

  2.  _

  2.1.  ͂߂

  VXeǗ҂ƃ[Uł́AVXe𗘗pɓāA󂯂
  VXeɑ΂闝xɍ܂BŃ[Ugt@CA
  [EH[݂̑ɋCÂɁAƂz悤ƂĂAl
  ꂷ邱ƂɂȂĂ܂܂B̃hLgł́At@CA[EH[
  CɂɁAC^[lbgŗǂgT[rX𗘗p@
  ܂BʂȎił͂ȂAyɍs܂Btelnet ZbV
  z IP G~[^𓮂Ď܂B

  ̃hLg̃ACfBÁABarak Pearlmutter 
  <mailto:bap@cs.unm.edu>  Term-Firewall mini-HOWTO 炢
  B̃hLg Term ƂÂȂAł̓T|[g
  ĂȂvOgďĂ܂(ł͑f炵v
  Oł)BTerm ́AÂAڐÂȂɂȂĂ܂BW
  Ƃ͂Ȃ telnet ̎Ō悤ȓƎƓlɁB

  2.2.  ZLeB̖

  VXeǗ҂t@CA[EH[𗧂ĂĂ̂́A񗝗R
  Ă̂ƂłBāÃ\tgEGAgpɓẮAǗ
  ҂狖𓾂悢Ǝv܂BAȂO telnet ł
  Ƃ (̓nbNLOs߂̕Kvł)́ÅO
  ̃VXeɃANZX錠Ă邱ƂӖ܂B܂
  VXeɉ炩̂ŃOCɂ́AȂ̃VXẽ[
  UƂĔF߂ĂKv܂B

  ZLeB̂ƂlƁAt@CA[EH[̂łɊJĂ錊
  𗘗p邱Ƃ́AƂĂ y @łB̕ȂAvO
  {pĂvgR̂܂܎g邩łBtɂ̕@
  ƂȂꍇ́A̗pr̂߂ɃvNV@\ʂ̃vO
  KvɂȂ邩ÃvỎ(ƃRpC)sKvłĂ
  BȂƂƁAszŖ\ȊǗ҂ݒ~XƂɂ
  邩܂B܂At@CA[EH[ɂăT|[gĂT
  [rX(Web )ŁAigĂʏ̃T[rX(dq[ )𗘗p
  邽߂ɂ́AvgRꂽvgRɕϊvO
  KvȃvgR̕ACXg[͂߂ɂȂ邩܂B

  ̏ SLiRP ̂悤ȃ[UEx IP G~[^gƂɂ
  āAÕt@CA[EH[̌𗘗pUhƂł
  łBȂĕssׂȂ΁A̎igĂA
  t@CA[EH[̌UłȂ͂ł(AU҂͂邪
  A[ǧl₻ɗނĺA[gEzXg炠Ȃ
  ̍sׂĎ邱Ƃł܂)B
  IɔfāA̕@ rI SȂ͂łB́A
  ݒ肵̊ɑSʓIɈˑ@Ȃ̂ŁA͉̕ۏ؂ł
  ܂BC^[lbgoR̐ڑ́A̎igg܂A{
  IɈSȂ̂ł͂܂Bł炱̎iɉāA炩̈Í
  قǂƂ΍ȂuĂȂ̂ȂAS͕ۏ؂Ă
  AȂǂƂv݂ԈĂȂłB

  ܂ł̂Ƃ܂Ƃ߂ƁAȂĂ邩𗝉ĂȂȂA
  ̎ipȂłAƂƂłBēxuƂv
  łB

  2.3.  ɕKvȂ

  ̃hLǵAȂ̂Ƃ𗝉ĂƉ肵ďĂ
  ܂B

  o  lbg[N̐ݒ@mĂ邱ƁB

  o  t@CA[EH[̗ɃVFEAJEgĂ邱ƁB

  o  葤ɂ telnet( ssh(Secure Shell)₻Ɠ̋@\
     )płAJEgĂ邱ƁB

  o  ɂ鎩̃VFEAJEg IP G~[^sł邱
     ƁB

  o  G~[gꂽ IP ڑœvO𗼑ɎĂ邱
     ƁB

     ǂȃvOłA̐ڑ@𗘗pł܂B[J̃G~
     [^́A Linux J[l ƂƂ肵Ă pppd AăRpC
     KvŁAʂȃCuNKv Term ̂悤
     vOg܂B

  IP G~[^ɂĂ pppd ɂĂ SLiRPɂĂA܂Ƃ Linux
  fBXgr[VłΕtĂ͂łAftp TCgł
  ܂B[g̃VFEAJEgʃ[Û̂
  ΁ASLiRP ŎĂB

  2.4.  \tgEGÃ_E[h

  Lɂ\tgEGÂقƂǂ́AWIȃfBXgr[V
  tĂ邩AꍇɂẮÃRgr[VɊ܂܂Ă
  ͂łBȂƂŌ 2 āArpm pbP[Wŗpł
  BŐṼoCi\[X𗎂ĂȂ΁AL̃AhX
  pĂ(ǍŌ̃\tgEGA̓ 1 ́A Linux ł͓
  ܂)B

  o  SLiRP ́A <http://blitzen.canberra.edu.au/slirp> A
     <ftp://www.ibc.wustl.edu/pub/slirp_bin/> ɁA

  o  zsh ́A <http://www.peak.org/zsh/> ɁA

  o  ppp ́A <ftp://cs.anu.edu.au/pub/software/ppp/> ɁA

  o  fwprc  cotty ́A <http://www.tunes.org/~fare/files/fwprc/> ɂ
     ܂B

  3.  _𗝉

  _𗝉΁Aŏ̔ƂɂȂ܂B

  3.1.  _𖾊mɂ

  ̎igȂA܂ꂪǂ̂悤ɋ@\邩lĂ݂
  Kv܂B΁AȂꍇɁAǂɌ
  悢킩܂B

  _𗝉͂߂̃Xebv́A֘AlɖOċʂ
  邱ƂłB

  ł͂܂Au[JvƂt́Aɐڑd|}V
  AvOt@C̃}Vɂ邱ƂƂ܂B΂ɁA
  u[gvƂt́Aڑ̑葤Ӗ܂B

  3.2.  _

  ŏIڕẂA[J IP G~[^o͂AɑΉ郊[g
   IP G~[^ɓnƂłB

  IP G~[^Ԃ̂ƂsoH́AڐڑĂfoC
  X(pppd ̏ꍇ)uݎgpĂ ttyv̂ǂ炩ɂȂ܂B telnet
  ZbV͑O҂ł͂ȂA҂ɓĂ͂܂̂łAÂ炢ʂ
  ܂BƂ̂AR}hEC烍[J̃G~[^s
  ƁAuݎgpĂ ttyv́A[gEZbVł͂ȂAR}
  hECgĂ郆[UɐڑĂ܂łBV
  ZbV([J̓[g)VK̒[痧グKv
  ܂A IP G~[^̋NƋN̐ڑ𓯊Ȃ
  ΂Ȃ܂BZbV̕svȏo͂A̃ZbṼR}
  hƂĎsĂ܂Ƃ́AȂ΂܂BȂ
  ƁAJԂsvȃR}hsĂ܂܂B

  3.3.  ɖʓ|Ȃ

  łȒPȕ@́A[J IP G~[^J[l̃lbg[N@
  \ł pppd  IPpPbg̃f[^n@łB pppd ͌\
  ܂ʂŁA /dev ́AݎgpĂ tty 炵f[^󂯎
  ܂B󂯎̂ tty ŁApCvoRł͂߂Ȃ̂ł(͂
  dlƂł傤)B܂A[g pppd  telnet Zb
  V tty gp镪ɂ͂悢ƂĂA[J pppd ł́Aڑ
  ׂ telnet ZbV pppd 肵Ă܂̂ŁA
  ɂȂ܂B̂悤Ȃ킯ŁÃbp[KvɂȂĂ܂B

  telnet  Ă̏ꍇApCv܂pł܂BA͂茻
  gpĂ tty foCX̐s߁AɎxႪĂ܂
  B܂ telnet  tty 𗘗pɎgpƁAf[^̂Ƃ肪
  ԂɂȂĂ܂܂̂ŁAuxvRs[^gĂƁAڑ
  łȂȂ邩܂(fwprc 0.1 ́APentium/MMX 233 ł͖Ȃ
  삵܂A 6x86-P200+ ł 6  1 xA486DX2/66 ł͑S
  삵܂ł)

  [: ƂpCv̑΂gȂŁAuvzt@Cg
  ăt@CǂݏƂ "tty" foCX̌𔭖nY
  (Ԃ񂻂 MULTICS gƎvǁA^oJ UNIX 
  l͂)VĂ!  !]

  4.  ɂ

  4.1.  

  fwprct@CA[EH[ɌJvOłButty vNVv
  Ƃċ@\cotty𗘗pĂ܂B͉zI 2  tty foC
  XJ܂Bꂼ̃foCXŃR}hsƁȀo͂
  ̂܂܃Rs[āAւ̃R}h̓͂Ƃ tty ɓn܂BR
  }h́A[g telnet ڑʂēnA葤́A[J
  pppd 󂯎܂B pppd  ʏ̃`bgEXNvg
  Ɠ悤ɁAtelnet ZbVJāAs悤ɂȂ
  B

  4.2.  fwprc

  At@CA[EHɌXNvg fwprc ܂BXN
  vg̃ZtEhLgƂĂ܂Bcotty (fwprc 0.2
  ȏ̃o[WŕKvɂȂ܂)Ƃ킹āÃTCgł
  <http://www.tunes.org/~fare/files/fwprc/>痎Ƃł܂B
  hLgĂ鎞_ł̍ŐVo[ẂA fwprc 0.3a  cotty
  0.3a łB

  ufwprcvƂO͂ēǂ݂Â炭Aɂ܂B
  ΃t@CA[EH[̌œCCĂA\ŕΎI
  ȊǗ҂邱Ƃł邩ł(񗝂ɂȂt@CA
  [EH[݂܂A͖Ă͂ȂȂ̂łBZL
  eB́A ݒ̈ꕔł)Boāufwprcvǂ܂Ȃ
  ΂ȂȂɂ́AvtňԕsɊǂݕIł
  B

  ReXgI Ɂufwprcv̓ǂݕ .au `Ř^ꂽI[fBIE
  t@CɂđĂBłsȂ̂ɂ́At[ŃAbvO[
  hł錠グAfwprc 1.0 ̃y[WɂOfڂ܂I

  ̐ݒł̃vOeXg܂B\[XEt@
  CĐݒ肵܂B͂}[tB[̖@ɂ͋t炦A
  Ȃ͍󋵂Ɋׂ邩܂BȎɂ́ARɉǂ
  ĂČ\łB΁Aꂩݒ肷邱ƂɂȂ鑼݂̂Ȃ
  ́AȒPɗpł悤ɂȂł傤B

  4.3.  .fwprcrc

  fwprc ́A.fwprcrc t@CgăJX^}CY܂̂ŁAt@CA[
  EH[̗œ悤Ȑݒt@CKv܂BقȂ邢
  ̐ݒg邱Ƃ\ł( Ă܂)A
  ͓ǎ҂̕ւ̏hƂĂ܂傤B

  ܂ fwprc ̊Y镔Rs[āA.fwprcrc ƂÕt@C
  z[EfBNgɍĂBɁAȂ̊ɂݒ
  Ȃ悤ɁAϐ̒lύX܂BŌɂ̐ݒt@C𑊎葤̃zX
  gɃRs[āAeXgĂB

  ftHg̐ݒł́Apppd [JŎgpāA[gł slirp 
  g悤ɂȂĂ܂̂ŁAL̂悤ɓK؂ɍĐݒ肵ĂB

       remote_IP_emu () { remote_pppd }

  SLiRP  pppd SA葤ɃANZX@ȒPłB
  ȂA[g̃}V root ̌KvƂȂłBS
  R͂܂܂BڑĂ}V璼ڂpPbgȊÓA
  ܂󂯂Ȃ߂ł(}XJ[[fBOŃTulbg̃[
  eBOƂ̃bg͂ȂȂ܂)B SLiRP ̊{@\͂܂
  ܂A܂܂ꂩ̋@\(Ⴆ΃^CȐ)܂B
  t[\tgłA\[XnbNāAKvȋ@\ǂǂ
  CvgĂB

  5.  Α猊

  5.1.  {Iȍl

  telnet t@CA[EH[̕Б炵łȂꍇ܂B
  󋵂łA̒ʐMi𗘗p邱Ƃ\ł(dq
  [)B̒ʐMipĂ郁bZ[W̌@ǂ̂悤ɍs
  ĂĂA telnet uĂvAt@CA[EH[̔
  ̃}Vɐڑł΁At@CA[EH[ʉ߂ăbZ[W`
  邱Ƃ\łB

  fwprc  PGP(Pretty Good Privacy)gĔF؂ꂽdq[̂悤
  bZ[WƁAIɑɑ΂Đڑs@\Ă܂B
  fwprc ɃbZ[W`vgR̃tB^Ƃ procmail(1) o
  ^邾 OK ł(̓IȐݒ@ fwprc ɕtĂ܂)B
  ӂĂ炢̂́Apppd K؂ȃ[UŎs邽߂ɂ́A
  root  setuid 郉bp[Ȃ΂ȂȂƂłB̓I
  @ fwprc ɕtǂłB

  ܂AʐMeF؂ĂĂAĐڑ̂ZLAȂ킯ł͂
  ܂B{ɃZLAȐڑȂ ssh(ł telnet oR
  )gpׂłB̂悤Ȃ킯 telnet oR̒ʐMōsĂ
  邱Ƃɑ΂āAӂ𕥂Kv܂B܂{ɃZLAȒʐM
  ȂAssh gpĂBɊ֘A񂨂тӌǂ
  ǂ񂹂B

  5.2.  dq[̂Ƃ̂

  ȂAt@CA[EH[ɎĂɂȂ΁Aprocmail
   telnet ĂȂ[ET[o𗘗pĂ\
  BłSzȂI  fetchmail(1) f[ƂēāANCA
  g Linux }VƂƂ肳ΑvłB cron  I
   1 ` 5 ԊuŃ|[O܂Bfetchmail ́A[JEAhX
  ̃[ sendmail(8) 𗘗pătH[h邱Ƃł܂Bz
   procmail(1) g悤ɐݒ肷邱Ƃł܂BobNOE
  h̃f[Ƃ fetchmail 𓮂ƁA fwprc  fetchmail 𓮂
  ƂɁAłɃf[ƂēĂ fetchmail ܂
  ċNł܂B _~[̃[ǓŃf[ fetchmail
  𓮂Ƃ̂ 1 ̎łB܂ɕpɂɃ|[O邱Ƃ́A
  T[oɂƂĂÃNCAgE}VɂƂĂAD܂
  B΂Ƀ|[O܂肵Ȃ悤ɂƁAbZ[Wǂ߂
  łɎԂAeƂ̃^C~OĂ܂܂B 2 Ԋu
  Ń|[OĂ܂B

  6.  Ō̒ӓ_

  6.1.  ̑̐ݒ

  telnet Ă鑼ɂA낢ȃ|V[t@CA[EH[
  ݂Ă܂BpPbgt@CA[EH[oRďɂƂ肳
  ď񂪍sĂȂ΁A𗘗păt@CA[EH[Ɍ
  J邱Ƃ͉\łBvɁAJvÔA
  Ԃ邩AȂAƂႢ邾łB

  ȒPɉłꍇ܂Bpty z ssh 𓮂ẴX[u
   tty  pppd 𓮂@łB cotty 0.3a gĎł͂
  Afwprc āA̋@\gݍłl͂܂܂B
  ̗KƂĂł?  ʓ|t@CA[EH[킫ɒu
  ƂāAƂƎvɂ́AZLAȁuVPN(Virtual
  Private Network)v\z邱Ƃ߂܂Bڂ́AVPN mini-
  HOWTO ĂB

   7 rbgʂȂ܂Kvꍇ́APPP ł͂Ȃ
  SLIP gKvƎv܂B͎Ă܂񂵁AȂ
  Ǝv܂BƂ̂Aŋ߂͂悻 8 rbg N[ȉقƂ
  łB

  āAt@CA[EH[ʉ߂łi WWW vNVȂ(
  ʂɃC^[lbgڑĂlbg[N̍Œł傤)Ao
  p̃obt@f[āAHTTP ڑ𗘗păobt@̃f[
  ^𑗂oƎv̂ł͂Ȃł傤B fwprc 𓮂
  āAHTTP z telnet sƂŎł܂BxxAт
  ƔȂł傤Afetchmail(1)  suck(1) Ƃob`n
  vOŗp镪ɂ́A\łB

  ȏɃptH[}XグAƖȃvgR(DNS
  NG[EpPbg ICMP pPbg)fʂꍇ́AȂʓ|
  ɂȂ܂BƂ΁AFox vWFNgōsĂ悤 IP X^bN
  nbNāApPbgvgR̎ނɈˑȂAIɃlbg
  [N@\ŎKvłĂ܂Bsł͂
  ߂āAHTTP  DNSAICMP z IP Őڑł܂BvgRGȂ
  łȂAJ[lƂ̃C^[tF[X荞ޕKv̂ŁACv
  g͂Ȃ肽ւȍƂɂȂ܂B
  󒐁FuFox vWFNgvɂẮA The Fox Project: Advanced
  Languages for Systems Software
  <http://www.cs.cmu.edu/afs/cs.cmu.edu/project/fox/mosaic/HomePage.html>
  QƂĂB
  ܂ ̃vWFNgɂ lbg[NEvgREX^bN̎
  Ă̎́A Fox Project Publications
  <http://www.cs.cmu.edu/afs/cs.cmu.edu/project/fox/mosaic/papers.html>
  ɂAuSignatures for a Network Protocol Stack: A Systems
  Application of Standard ML, Edoardo Biagioni, Rober Harper, Peter Lee,
  and Brian G. MilnesvĂB

  ƂŁAHTTP vgR𗘗păt@CA[EH[ɌJ
  A_~[̃y[Wpӂ邱ƂYȂłBȂƁA
  ꂱCɂǗ҂Ă܂܂B

  6.2.  ̃hLg̉ɂ

  KvāÃhLg܂Ał͂ȏ㎞
  ԂƂł܂B̂߁ÃhLg͂܂܂傴
  ȓeɂȂĂ܂Bi߂ɂ́ÃZNVƏڂA
  Ƃ݂Ȃ̃AhoCXKvłBtB[hobNAA͂܂
  ̃hLĝɍXVĂA}܂B

  ƂA܂̖_cĂ܂BN@A
  ݂Ȃ(Ȃ܂߂)̂߂ɖ𗧂܂BX̎(͐l
  ) ĂāAȂĂ݂܂񂩁BׂƂ
  ƖŃgbL[Ȃ̂łARZvg͖łB

  ǂ߂킸ɁA낢Ȗ邨`ĂB
  ΁ÃhLgɂ悭ȂƎv܂B

  6.3.  ƂĂ؂ȂƂ ̌JԂ --- {łIII

       ̃hLg̓eɂāAؐӔC͕܂Bǂ
       QĂẢ͎ߎł͂܂B̃hL
       gɏĂiƂ邱ƂɂĐ郊XN𗝉ł
       ȂȂ΁AėpȂłBpꍇ́A
       ̐ẼRs[^ĂAƖɎxႪłĂA܂
       Ђɑz̑Q^Ă܂ȂAƕĂB
       ɋ肵ȂłˁB

