Date: Wed, 27 Sep 2006 16:08:03 +0200 From: Marko Lerota <marko.lerota@zg.t-com.hr> To: "Bruce M. Simpson" <bms@FreeBSD.org> Cc: freebsd-net@freebsd.org Subject: Re: problem with routnig Message-ID: <8664f94d30.fsf@sparrow.local> In-Reply-To: <451A7A50.7090803@FreeBSD.org> (Bruce M. Simpson's message of "Wed, 27 Sep 2006 14:19:12 %2B0100") References: <86d59h4syy.fsf@sparrow.local> <451A7A50.7090803@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
"Bruce M. Simpson" <bms@FreeBSD.org> writes:
> Marko Lerota wrote:
>> route_lan2="-net 192.168.2.0 -netmask 255.255.255.0 -iface xl0"
>> route_lan2="-net 192.168.2.0 -netmask 255.255.255.0 192.168.1.1"
>>
> Neither of these subnet routes should be necessary as 192.168.2.0/24
> is already directly connected via fxp0.
>
> Do you still see the problem without this route installed?
Yes
I'm trying to do this
FreeBSD BOX
LAN 192.168.2.0/24 ---> switch0 ---> fxp0 192.168.2.71
xl0 192.168.1.70 ---> switch1 ---> GW 192.168.1.1
I want to intercept every packet from network, and don't allow LAN users
to go directly to gateway. Gateway is phisically removed from LAN users.
The only link is through FreeBSD box. Maybe this is, how they call it
"transparent proxy or Intercepting proxy" ?
--
One cannot sell the earth upon which the people walk
Tacunka Witco
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?8664f94d30.fsf>