Date: Mon, 15 Jan 2001 14:45:44 -0500 From: "Elliott Perrin" <eperrin@bigorbit.com> To: <freebsd-ipfw@FreeBSD.ORG> Subject: Bridging Firewall Message-ID: <007001c07f2b$c64732d0$0c01a8c0@bottleneck2000>
index | next in thread | raw e-mail
Wondering if this is possible before I go and build it
ISP
|
|
_____xl0_____
| xl1----- Public Servers
| |
|_____xl2____ |
|
|
LAN
xl0 - assigned a.b.c.114/28
xl1 - not assigned
xl2 - assigned 192.168.1.0/24
Default Router (At the ISP) - a.b.c.d.113/28
I want to bridge between xl1 and xl0 only, with arp only allowed to pass between addresses
within the /28 subnet we have been assigned. I figure that arp only needs to be passed
between these machines and it will keep me from having to have a default allow all from
any to any rule.
Am I looking at a huge headache here. (ie. should I go with Static NAT to our public
servers instead)
Thanks,
________________________________________
Elliott Perrin
Systems Administrator
Big Orbit - Specializing in new media for youth
web: http://www.bigorbit.com
email: eperrin@bigorbit.com
[t] 416.516.0705 ext 25
[f] 416.516.9256
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message
help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?007001c07f2b$c64732d0$0c01a8c0>