From owner-freebsd-questions@FreeBSD.ORG  Mon Jul  5 19:01:24 2010
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 28DB71065742
	for <questions@freebsd.org>; Mon,  5 Jul 2010 19:01:24 +0000 (UTC)
	(envelope-from dkelly@hiwaay.net)
Received: from bee.hiwaay.net (bee.hiwaay.net [216.180.54.11])
	by mx1.freebsd.org (Postfix) with ESMTP id BEB3E8FC1B
	for <questions@freebsd.org>; Mon,  5 Jul 2010 19:01:23 +0000 (UTC)
Received: from [10.0.0.9] (dynamic-24-42-224-110.knology.net [24.42.224.110]
	(may be forged)) (authenticated bits=0)
	by bee.hiwaay.net (8.13.8/8.13.8) with ESMTP id o65In0ST1210298
	(version=TLSv1/SSLv3 cipher=RC4-SHA bits=128 verify=NO);
	Mon, 5 Jul 2010 13:49:01 -0500 (CDT)
References: <AANLkTilW7eTmmdUtRlXpRX3CT_vuOkE2M0eDB_qiiauW@mail.gmail.com>
	<20100705165746.GB10990@Grumpy.DynDNS.org>
	<AANLkTim0kbRIA5ZaCYCLaijIvTmGyugiy36vHgU10sAX@mail.gmail.com>
In-Reply-To: <AANLkTim0kbRIA5ZaCYCLaijIvTmGyugiy36vHgU10sAX@mail.gmail.com>
Mime-Version: 1.0 (Apple Message framework v1081)
Content-Type: text/plain; charset=us-ascii
Message-Id: <5AD978F8-557E-4D51-9B85-BC56AA061D70@hiwaay.net>
Content-Transfer-Encoding: quoted-printable
From: David Kelly <dkelly@hiwaay.net>
Date: Mon, 5 Jul 2010 13:49:20 -0500
To: Modulok <modulok@gmail.com>
X-Mailer: Apple Mail (2.1081)
Cc: questions@freebsd.org
Subject: Re: VLANs is this right?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Jul 2010 19:01:24 -0000


On Jul 5, 2010, at 12:30 PM, Modulok wrote:

> It was a simplified diagram of what I thought I needed. ( Which may or
> may not be what I actually need! )
>=20
> Basically, I want a port on the switch that I can plug un-trusted
> devices into.


Seconding Peter's request that you not top-post. We read and write this =
language left to right, top to bottom, and nothing about email changes =
that.

You say "un-trusted devices" but would have to trust the device to =
configure a VLAN interface. Or back to the ProCurve, it would need to be =
configured to tunnel everything on a the untrusted port into a VLAN. =
And/Or configure so that the untrusted port is switched only to the =
FreeBSD router port.

Would be easiest to slip another NIC in the FreeBSD router for this =
purpose. Then no VLAN, everything is handled in your firewall.

--
David Kelly N4HHE, dkelly@HiWAAY.net
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
Whom computers would destroy, they must first drive mad.