From owner-freebsd-net@FreeBSD.ORG Sat Oct 25 19:00:55 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4873716A4B3 for ; Sat, 25 Oct 2003 19:00:55 -0700 (PDT) Received: from imhotep.yuckfou.org (cust.89.117.adsl.cistron.nl [195.64.89.117]) by mx1.FreeBSD.org (Postfix) with ESMTP id AFE2B43FAF for ; Sat, 25 Oct 2003 19:00:53 -0700 (PDT) (envelope-from nivo+sender+8eb026@yuckfou.org) Received: from localhost (localhost [127.0.0.1]) by imhotep.yuckfou.org (Postfix) with ESMTP id AE8E48B for ; Sun, 26 Oct 2003 03:00:51 +0100 (CET) Received: from imhotep.yuckfou.org ([127.0.0.1]) by localhost (imhotep.yuckfou.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 37504-07 for ; Sun, 26 Oct 2003 03:00:51 +0100 (CET) Received: from localhost.yuckfou.org (localhost [IPv6:::1]) by imhotep.yuckfou.org (Postfix) with ESMTP id 33E668A for ; Sun, 26 Oct 2003 03:00:51 +0100 (CET) Received: from yuckfou.org (turbata-xp [192.168.2.236]) by localhost.yuckfou.org (tmda-ofmipd) with ESMTP; Sun, 26 Oct 2003 03:00:48 +0100 (CET) Message-ID: <3F9B2AD0.3050005@yuckfou.org> Date: Sun, 26 Oct 2003 03:00:48 +0100 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.5b) Gecko/20030912 Thunderbird/0.3a X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-net@freebsd.org References: <1067128348.400238.16844.nullmailer@cicuta.babolo.ru> In-Reply-To: <1067128348.400238.16844.nullmailer@cicuta.babolo.ru> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit From: Nils Vogels X-Delivery-Agent: TMDA/0.86 (Venetian Way) X-TMDA-Fingerprint: 3/ljHBgTBy/G5rRMx67Q70142II X-Virus-Scanned: by amavisd-new at yuckfou.org Subject: Re: Reverse IP NAT to secondary IP address X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Nils Vogels List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 26 Oct 2003 02:00:55 -0000 "."@babolo.ru wrote: >>WWW is a FreeBSD-4.8 box. >>Gateway is a FreeBSD-4.8 box with IP Filter >>Since the SNMP-server does not have a default route, the traffic needs >>to originate from an IP address within the same subnet as the Gateway. >>To that end, I have added an alias IP of 192.168.2.1 to the gateway. >>When I run an snmpwalk from the gateway all goes fine. >> >>Since the traffic is coming from WWW and heading through the Gateway, >>which does not bridge, I have to perform some form of NATting in the >>gateway. >> >> >> >configure port with SNMP-server as 192.168.0.17/30 for example >instead 192.168.2.1/24, and >sysctl net.link.ether.inet.proxyall=1 > >and configure SNMP-server as 192.168.0.18/24 > >If you can change mask of SNMP-server, you can >use 192.168.0/24 and 192.168.1/24 on gateway >and 192.168.0/25 on SNMP-server. > > Since I have the internet on the same interface, but on the primary IP instead, would enabling ARP PROXY not fill the ARP table with every host on the internet, that tries to contact the gateway ? Greetings, Nils.