From owner-freebsd-questions  Tue May 11 21:51:26 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from cygnus.rush.net (cygnus.rush.net [209.45.245.133])
	by hub.freebsd.org (Postfix) with ESMTP id D5CFB15254
	for <freebsd-questions@FreeBSD.ORG>; Tue, 11 May 1999 21:51:24 -0700 (PDT)
	(envelope-from bright@rush.net)
Received: from localhost (bright@localhost)
	by cygnus.rush.net (8.9.3/8.9.3) with SMTP id AAA06918;
	Wed, 12 May 1999 00:14:10 -0500 (EST)
Date: Wed, 12 May 1999 00:14:08 -0500 (EST)
From: Alfred Perlstein <bright@rush.net>
To: daniel B <danielb@pacex.net>
Cc: freebsd-questions@FreeBSD.ORG
Subject: RE: Multiple NICs in one subnet
In-Reply-To: <Pine.BSF.3.96.990511195954.23342E-100000@almazs.pacex.net>
Message-ID: <Pine.BSF.3.96.990512001103.26546C-100000@cygnus.rush.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Tue, 11 May 1999, daniel B wrote:

> 	
> Realy need help on this one;
> 
> My network topology:
> 
> [ DSL router ]---[ fbsd firewall ]-----[  DNS/SMTP/HTTP machine ]
>                 ep1             ep0
> 
> I have a /27 subnet and am trying to install firewall for my network on a
> seperate FreeBSD machine with two nics running 3.1.
> . All nics configured correctly with their own IPs
> . kernel configured for IPFIREWALL_VERBOSE
> . /etc/rc.conf setup for fire wall & gateway_enable=YES
> 
> Problem #1: I keep getting  the following errors:
> /frank routed[89]: ep1 (204.1.212.130/27) is
> duplicated by ep0  (204.1.212.131/27)
> 
> frank /kernel: arp: 204.1.212.156 is on ep0 but got reply from 00:20:4f:45
> on ep1
> 
> How do I force ep1 to pass packets from router to firewall
> and ep0 from firewall to internal fbsd machine while having
> everything  on the same subnet?
> Is it possible?
> If not what do I need to change/modify for it to work?

here's what i did:

compile a kernel with bridging support (options BRIDGE),
take off the IP from "ep1", put an ip on "ep0",
enable bridge: sysctl -w net.link.ether.bridge=1
make sure the ep1 <-> DSL router is on a single cable,
hook up "ep0" to a hub/switch with the rest of your network on it.

note: ep1 shouldn't have an IP address

-Alfred



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message