Date: Tue, 13 Mar 2001 17:35:00 -0000 From: Lee Smallbone <lee@kechara.net> To: security@freebsd.org Subject: [OT?] - Central point router Message-ID: <200103131841.SAA10089@mailgate.kechara.net>
next in thread | raw e-mail | index | archive | help
Hi,
I'm trying to set up a router (running freebsd) that will allow me to have
all network traffic on one network segment run through this router. This
is for purposes of applying global firewall rules, and also for traffic monitoring.
My setup looks a little something like this:
62.xx.139.1
(internet) --- [telco supplied router]
|
|
|
[10/100 Switch] ----------- [firewall]-------(privately addressed LAN)
/ | \
[server 3] | \
62.xx.139.6 | \
| \
| [server 1]
[server 2] 62.xx.139.4
62.xx.139.5
What I'd like to be able to do is have a similar setup, but for it to look like this:
62.xx.139.1
(internet) --- [telco supplied router]
|
|
| 62.xx.139.3
[10/100 Switch] ----------- [firewall]-------(privately addressed LAN)
|
|
62.xx.139.7
========[router/firewall]==========
/ | \
[server 3] | \
62.xx.139.6 | \
| \
| [server 1]
[server 2] 62.xx.139.4
62.xx.139.5
How can I achieve this? Any traffic destined for say, 62.xx.139.5 would have to
pass via 62.xx.139.7 first.
Any help appreciated.
--
Lee Smallbone
Kechara Internet
lee@kechara.net
www.kechara.net
Tel: (01243) 869 969
Fax: (01243) 866 685
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200103131841.SAA10089>