Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 26 Oct 2001 14:06:15 -0700 (PDT)
From:      "Michael McCaffrey" <michael@fxprojects.com>
To:        scott@lampert.org (Scott Lampert)
Cc:        freebsd-questions@FreeBSD.ORG
Subject:   Re: Bridging issue
Message-ID:  <200110262106.f9QL6Fk46915@godzilla.fxprojects.com>
In-Reply-To: <no.id> from "Scott Lampert" at Oct 26, 2001 12:51:41 PM
next in thread | previous in thread | raw e-mail | index | archive | help 
don't know about the error message but you don't need the third interface. 
just assign the IP to your inside interface. anything that's not for that 
IP will get bridged.

> 
>     I sent this question to -security last week and garnered not a single
> response so I hope that maybe I'll have better luck here.
> 
>     I have a box I've setup as a bridging firewall with ipfw on 4.4-RELEASE.
> It has 3 interfaces - two are bridged, without IP addresses, and the third
> has an IP address and is connected to the inside network.  Basically it
> looks like this:
> 
>    +----------+
>    | Internet |
>    +-*--------+
>      | 192.168.1.1/24
>      |
>      |
>      | bridge outside if
>   +--*------------+
>   |               |192.168.1.2/24
>   |  Firewall Box *-------+
>   |               |       |
>   +--*------------+       |
>      | bridge inside if   |
>      |                    |
>      |                  +-+-------+         +---------------+
>      +------------------| Switch  |---------| other systems |
>                         +---------+         +---------------+
> 
> 
> 
> I hope the poor ascii art helps rather than hinders. :)  In any event, I've
> noticed after running the firewall for a few hours that I start getting the
> following message in my dmesg output:
> 
> arp: 00:aa:bb:cc:dd:ee is using my IP address 192.168.1.2!
> xx ouch, bdg_forward for local pkt
> 
> 
> The box is complaining about that third interface having its IP.  It looks
> like it doesn't realize that the interface belongs to itself.  Is this
> normal behavior or have I misconfigured something?  Do I need to add the
> third interface to the bridge configuration somehow?  This exact
> configuration runs without any complaints under OpenBSD 2.9 however for
> various reasons I'd prefer to run FreeBSD on this box. If more information
> is required I'd be more than happy to provide it.  Thanks,
> 
>             -Scott
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
> 



     _   _     
    (_)-(_)    
     (o o)     
 ooO--(_)--Ooo-

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200110262106.f9QL6Fk46915>