From owner-freebsd-isp  Sun Jan 17 13:57:35 1999
Return-Path: <owner-freebsd-isp@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id NAA05029
          for freebsd-isp-outgoing; Sun, 17 Jan 1999 13:57:35 -0800 (PST)
          (envelope-from owner-freebsd-isp@FreeBSD.ORG)
Received: from mailhost.clipper.net (mailhost.clipper.net [207.109.253.5])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA05020
          for <freebsd-isp@FreeBSD.ORG>; Sun, 17 Jan 1999 13:57:34 -0800 (PST)
          (envelope-from tim@clipper.net)
Received: from localhost (tim@localhost)
	by mailhost.clipper.net (8.8.8/8.8.8) with SMTP id NAA21644;
	Sun, 17 Jan 1999 13:57:21 -0800
Date: Sun, 17 Jan 1999 13:57:21 -0800 (PST)
From: Tim Wolfe <tim@clipper.net>
To: Lutz Rabing <LutzRab@omc.net>
cc: freebsd-isp@FreeBSD.ORG
Subject: Re: Firewall route add / Cisco
In-Reply-To: <199901162121.WAA21306@office.omc.net>
Message-ID: <Pine.LNX.4.02.9901171353001.21455-100000@mailhost.clipper.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Sat, 16 Jan 1999, Lutz Rabing wrote:

> This is not exactly a FreeBSD question. However, we use a FreeBSD firewall
> and have FreeBSD customer servers behind it ...
> The problem is to assign a /24 to a customer server with:
>   route add -net 1.2.3.0/24 -interface xl1
> 
> I can't do that because I have to leave one IP address of the /24 on the
> cisco. e.g.: 
>   customer-server: 62.62.62.2 .. 62.62.62.254
>   cisco          : 62.62.62.1
> 
> Does someone know how to alias a /24 to the cisco router without assigning
> an IP to it? I checked the cisco docs, but did not find a clue.

You have to have some IP connection between the cisco and the FreeBSD
router.  (Unless someone smarter than I knows how to make cisco's ip
unnumbered and FreeBSD's equivalent function play nice together.)  What you
need to do is assign a /30 (4 IPs, 1 network address, 1 broadcast and 2
usable IPs one each for the cisco, say 192.168.1.1, and the FreeBSD box,
192.168.1.2) to connect them
together.  If you do not have enough real IPs, you can use private RFC1918
space (ie, 192.168.1.0/30) to connect the two routers.  Then simply add a
route on your cisco like:

conf term
ip route 1.2.3.0 255.255.255.0 192.168.1.2

Hope this helps,

Tim

----------------------------------------------------
Timothy M. Wolfe       | Why surf when you can Sail? 
tim@clipper.net	       | Join Oregon's Premier
Sr. Network Engineer   | Wireless Internet Provider!
ClipperNet Corporation | http://www.clipper.net/
----------------------------------------------------


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message