From owner-freebsd-hackers@FreeBSD.ORG Fri Dec 26 06:18:22 2003 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4DCB616A4CE for ; Fri, 26 Dec 2003 06:18:22 -0800 (PST) Received: from poisson.ece.iisc.ernet.in (poisson.ece.iisc.ernet.in [144.16.64.63]) by mx1.FreeBSD.org (Postfix) with ESMTP id 64EF143D31 for ; Fri, 26 Dec 2003 06:18:19 -0800 (PST) (envelope-from beastie@poisson.ece.iisc.ernet.in) Received: from poisson.ece.iisc.ernet.in (localhost [127.0.0.1]) hBQJlrgT088760 for ; Fri, 26 Dec 2003 19:47:53 GMT (envelope-from beastie@poisson.ece.iisc.ernet.in) Received: from localhost (beastie@localhost)hBQJlpVa088757 for ; Fri, 26 Dec 2003 19:47:52 GMT Date: Fri, 26 Dec 2003 19:47:51 +0000 (GMT) From: Sumanth NS To: freebsd-hackers@freebsd.org In-Reply-To: <002301c3cba9$9a627080$1402a8c0@crouch> Message-ID: <20031226192854.A88664-100000@poisson.ece.iisc.ernet.in> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: A FreeBSD bridge.. X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 Dec 2003 14:18:22 -0000 Hi! I plan to implement a FreeBSD bridge with two interfaces connecting my router and my LAN. My question, before I go ahead with the installation, is whether the default "This computer wants to be a gateway.." option, in /stand/sysinstall, would be enough to push traffic up and down through the interfaces, or do I need to specifically install additional software? I'm particularly concerned about SYN and ICMP floods entering my network, and am planning to block all such traffic using ipfw, on this intended bridge. All pointers, ideas and suggestions welcome. Many thanks, Sumanth