From owner-freebsd-questions Thu Jun 5 13:25:19 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA05020 for questions-outgoing; Thu, 5 Jun 1997 13:25:19 -0700 (PDT) Received: from cedb.dpcsys.com (ns2.BEACH.net [209.25.4.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA05015 for ; Thu, 5 Jun 1997 13:25:17 -0700 (PDT) Received: from localhost (dan@localhost) by cedb.dpcsys.com (8.8.5/8.8.2) with SMTP id UAA24545; Thu, 5 Jun 1997 20:24:59 GMT Date: Thu, 5 Jun 1997 13:24:58 -0700 (PDT) From: Dan Busarow To: Simon N Atkin cc: freebsd-questions@FreeBSD.ORG Subject: Re: Two Ethernet Interfaces in one machine for Firewall, possible ?? In-Reply-To: <3396E95F.1C35@enta.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-questions@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Thu, 5 Jun 1997, Simon N Atkin wrote: > I have assigned seperate IP's to each interface in > /etc/sysconfig but on start I get the error > > ifconfig: ioctl (SIOCAIFADDR): File exists, Your trying to setup two identical routes. > if we ifconfig -a we get > > de0: flags=8843 mtu 1500 > inet 194.x.x.99 netmask 0xffffff00 broadcast 194.x.x.255 > ether 00:80:c8:37:70:ce > ed1: flags=8843 mtu 1500 > inet 194.x.x.100 netmask 0xffffff00 broadcast 255.255.255.0 > ether 00:80:c8:37:b9:18 The two cards need to be on different networks, routing works between networks. > Note the broadcast on the second interface (ed1). > It must be possible to have two interfaces on one machine > as how do you efficiently build a firewall system ??? Put the protected machines on an RFC1918 address like 192.168.1.0 and set gateway=YES in rc.conf/sysconfig Dan -- Dan Busarow 714 443 4172 DPC Systems / Beach.Net dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82