From owner-freebsd-questions  Thu Oct  1 18:34:53 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id SAA09091
          for freebsd-questions-outgoing; Thu, 1 Oct 1998 18:34:53 -0700 (PDT)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from guadalajara.net (guadalajara.net [167.114.28.234])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA09080
          for <freebsd-questions@FreeBSD.ORG>; Thu, 1 Oct 1998 18:34:50 -0700 (PDT)
          (envelope-from lmadrig@multired.net)
Received: from multired.net (LOCALHOST [127.0.0.1]) by guadalajara.net (8.8.8/8.7.3) with ESMTP id UAA02090 for <freebsd-questions@FreeBSD.ORG>; Thu, 1 Oct 1998 20:39:42 GMT
Message-ID: <3613E88D.47123191@multired.net>
Date: Thu, 01 Oct 1998 20:39:41 +0000
From: Leonardo Madrigal <lmadrig@acnet.net>
X-Mailer: Mozilla 4.06 [en] (X11; I; FreeBSD 2.2.6-RELEASE i386)
MIME-Version: 1.0
To: freebsd-questions@FreeBSD.ORG
Subject: routing for firewall purposes.
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Hi al!!

I hope you can help me out.....heres my "problem" (i post this in to the
news, but nobody answer)

Im planning to put a firewall on my server, so i put two nics on my
server., but first, heres my network.


                                -------------
                               | Cisco AS  5200  |
                                -------------
                                                |
                                                |
                                                |
                                                |
                                                |
                                                |
                             ------------------
                             |                 HUB               |
                             ------------------
                                       |            |            |
                                       |            |            |
                                       |            |            |
                                       |            |            |
                                       |            |            |
                                    ---     ---       ----------
                                    |  1 |     |  2 |       |  FREEBSD |

                                    ---     ---       ----------

So the thing, is that i need , to connect directly the cisco to my
freebsd, and then connect the second nic to the hub,, so i can only
then,
start the ipfw, and make the rules , and then ALL the people , (machines
1and 2 ) if they want to reach the internet, the have first to
to pass the FREEBSD server.
all my ips are valid  and, the FreeBSD server uses a different gateway
than the machines 1,and 2  to reach the internet cause the ip's from
machine 1 , 2 are in the subnet 167.114.17.  and the server, its on the
subnet 167.114.28.
my cisco have two gateways configured.

the questions....
does routed can do the job, or do i need gated?
do i need natd?

wich options do i need to configure in the rc.conf, and in the kernel?

Thank you very much!!

-Jorge.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message