From owner-freebsd-questions@FreeBSD.ORG Thu Aug 4 01:09:16 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 52D0C16A41F for ; Thu, 4 Aug 2005 01:09:16 +0000 (GMT) (envelope-from nikolas.britton@gmail.com) Received: from wproxy.gmail.com (wproxy.gmail.com [64.233.184.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id D047643D45 for ; Thu, 4 Aug 2005 01:09:15 +0000 (GMT) (envelope-from nikolas.britton@gmail.com) Received: by wproxy.gmail.com with SMTP id i5so23856wra for ; Wed, 03 Aug 2005 18:09:15 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=Ijpgns7foeUG2fwdVR9YMJx/19HobUycIuDpVgbxLIdPOxdKx+Nd21ksYhFsFn8p1eyLZt0S1+7EdLtWmQPGKmSYH8qROynYZsPT/yX6tv20/IkNXuE7W1zipeXj4kl6DCjCdRww+PzYpWUHYEAI2KLhNqMyn1M7mgH3xMpteqk= Received: by 10.54.46.72 with SMTP id t72mr1113600wrt; Wed, 03 Aug 2005 18:09:15 -0700 (PDT) Received: by 10.54.124.11 with HTTP; Wed, 3 Aug 2005 18:09:15 -0700 (PDT) Message-ID: Date: Wed, 3 Aug 2005 20:09:15 -0500 From: Nikolas Britton To: Stephan Weaver In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline References: Cc: freebsd-questions@freebsd.org Subject: Re: Networking with FreeBSD X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Nikolas Britton List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 Aug 2005 01:09:16 -0000 On 8/3/05, Stephan Weaver wrote: >=20 >=20 > >From: Nikolas Britton > > > > > >Internet > > | > > | |--------WANs 1-4, 192.168.2/24, 192.168.3/24, 192.168.4/24, > >192.168.5/24 > >Firewall ------ DMZ 192.168.1/24 ----- Pixel, httpd, samba > > | > > | > >HQ LAN 192.168.0/24 > > > > > >OR: > > > >Internet > > | > > | |-----WAN, 192.168.2/24 > >Firewall ------- DMZ, 192.168.1/24 ----- Pixel, httpd > > | > > |------- Samba > > | > >HQ LAN 192.168.0/24 > > > >OR: > > > >Internet > > | > > | |-------WAN(s) > >Firewall > > | > > | > >HQ LAN > > > >Etc. > > > >We need more info to help you. >=20 >=20 >=20 > Thank you for your concern and quick response everyone. >=20 > Now i will use your example as mentioned above. >=20 > I have one quick question though. > These WAN's will be on seperate networks because of the /24. correct? >=20 Yes, 24 =3D class C =3D netmask of 255.255.255.0 http://public.pacbell.net/dedicated/cidr.html > So if Wan1 [192.168.2/24] Wants to Connect to our Pixel Server[192.168.1/= 24] > for example He would not be able to communicate because of the /24? Is > this correct? Yes because they are on different networks. you will need a router for them to communicate. =20 >=20 > If so, how do allow them to communicate? >=20 firewall =3D firewall, router, gateway, bridge, etc. with FreeBSD and the right software it will do all of that transparently. Setup a test lab of some sorts, start with this layout and work your way up until you understand what it's doing: Internet | | |-------WAN(s) 192.168.1/24 Firewall | | HQ LAN 192.168.0/24 You will need 3 PCs; one for the LAN, one on the WAN1 side and one for the firewall. For the firewall you will be using m0n0wall, 48MB ram (minimum) and 3 network cards. http://en.wikipedia.org/wiki/M0n0wall http://m0n0.ch/wall/download.php?file=3Dgeneric-pc-1.2b9.img http://m0n0.ch/wall/installation_generic.php http://m0n0.ch/wall/quickstart/ http://www.tomsnetworking.com/Reviews-161-ProdID-MONOWALL.php http://www.tomsnetworking.com/Reviews-161-ProdID-MONOWALL.php If you need any help setting it up etc. just ask me, I started using it sometime late in 2003 so I probably have more experience using the software then most people you'll run across