From owner-freebsd-isp@FreeBSD.ORG Wed Jan 14 03:24:16 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 16D8C16A4CE for ; Wed, 14 Jan 2004 03:24:16 -0800 (PST) Received: from mail009.syd.optusnet.com.au (mail009.syd.optusnet.com.au [211.29.132.64]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0D79943D41 for ; Wed, 14 Jan 2004 03:24:14 -0800 (PST) (envelope-from tfrank@optushome.com.au) Received: from marvin.home.local (c211-28-241-189.eburwd5.vic.optusnet.com.au [211.28.241.189])i0EBOBi32181; Wed, 14 Jan 2004 22:24:12 +1100 Received: by marvin.home.local (Postfix, from userid 1001) id 92A7028C; Wed, 14 Jan 2004 22:24:11 +1100 (EST) Date: Wed, 14 Jan 2004 22:24:11 +1100 From: Tony Frank To: "Nicol?s de Bari Embr?z G. R." Message-ID: <20040114112411.GA4492@marvin.home.local> References: <52975.148.243.211.1.1074063556.squirrel@mail.unixmexico.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <52975.148.243.211.1.1074063556.squirrel@mail.unixmexico.com> User-Agent: Mutt/1.4.1i cc: freebsd-isp@freebsd.org Subject: Re: Routing Networks X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Jan 2004 11:24:16 -0000 Hi there, On Wed, Jan 14, 2004 at 12:59:16AM -0600, Nicol?s de Bari Embr?z G. R. wrote: > What i want to do is that a computer on LAN A with an IP on the range of > 192.168.10.2-254 can ping, telnet, ssh, etc. to a computer on LAN B > "192.168.1.X". > How can i solve this problem, is this is a route or Nat problem ? Easy option is to ensure that a static route is configured on the Linux server to route 192.168.10.0/24 to 192.168.1.1 (your server IP) > There is one more issue, I can't touch the LINUX SERVER I can just be a > client or join the LAN by configure a nic with a IP on the range of > 192.168.1.0/24. Given this restriction, the best option might be to ensure that anything received on FreeBSD server from 192.168.10.0 subnet is passed through NAT to appear to originate from the FreeBSD server IP (192.168.1.1) This would allow traffic initiated from LAN A to talk to LAN B but typically would not allow LAN B to initiate traffic to LAN A. Unfortunately I have not used ipnat at all so cannot help in that aspect. With ipfw/natd I would have two natd instances and use ipfw rules to send packets to different divert sockets based on the IP address. Regards, Tony