Hi, all:

I've slogged through getting an OpenBSD box functional as a firewall for a
LAN, but always with the (simplest) configuration of two NICs, one for
outside (xDSL, T-1, whatever), and one for inside, to the LAN. PF has been
very good... to me.

I'd like to create a LAN that will include an OpenBSD system. The OpenBSD
system will do dial-up on demand for the other systems, all MS® Windows®.
If anyone has any thoughts, hints or suggestions, I'd be very appreciative.
I'm having a hard time finding stuff on this sort of configuration, mainly
because, I think, no one uses dial-up, anymore!

The users will turn on the firewall/gateway, say, in the morning, leave it
on all day, use their Windows® systems, occasionally visiting the Internet.
I'm not sure if the phone line for data will be exclusively used for that;
it may also be needed for faxes. Of course, I know that while on the
Internet, the office will not be able to receive faxes. But, it means that
I can't just hog the line... I need to let it go after, say, 10 minutes of
idleness.

I'd like to figure out how to allow someone on the network the ability to
shutdown the firewall/gateway without having to login to the system (I'm
worried they'll freak out at having to look at a command-line), but that can
wait, unless someone has a suggestion.

Anyway, TIA.

Best regards,

Jim