Date: Tue, 7 Jan 2003 13:21:22 -0800 From: Dean <dean@deanandadie.net> To: freebsd-questions@freebsd.org Subject: bridging question Message-ID: <20030107132121.L42697@sr2-unwk-01.sfbay.sun.com>
next in thread | raw e-mail | index | archive | help
Hello Question-ers,
(Please cc me in replies)
I have a -stable box that I would like to bridge ethernet across 2 of 3
interfaces. If I read the man page correctly, all I have to do is set
net.link.ether.bridge to 1 and set net.link.ether.bridge_cfg to a comma-
seperated list of interfaces. Eg
sysctl net.link.ether.bridge_cfg=dc0:0,dc1:0
would bridge ethernet across dc0 and dc1.
My reasoning for this is to consolidate my firewalls. I have a bridge screening
my DSL link and then a NAT machine which hides some more secured networks.
Internet
(+) DSL modem
|
[Bridge]
|
---+-+--- DMZ
|
[NAT]
|
----+---- "Secure" net
I'd like to simplify this to
Internet
(+) DSL modem
|
| dc0
+---+
|F/W| dc0 bridged with dc1
+---+
dc1 | | dc2
| +--------- "Secure" net
+------- DMZ
Is this a sound idea?
Thanks much,
--Dean - Unscrambler of eggs
--
Quality Web Hosting http://www.3llamas.com
Take your time, take your chances
--------------------------------------------------------------------------------
It matters not how strait the gate / How charged with punishment the scroll
I am the master of my fate / I am the captain of my soul. -- Invictus --
-- William E Henley --
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030107132121.L42697>