Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 4 Dec 2001 18:22:19 -0800
From:      "Crist J . Clark" <cristjc@earthlink.net>
To:        Chris Appleton <appleton_chris@yahoo.com>
Cc:        freebsd-questions@FreeBSD.ORG
Subject:   Re: ipf and router
Message-ID:  <20011204182219.A40864@blossom.cjclark.org>
In-Reply-To: <20011204183308.55175.qmail@web14803.mail.yahoo.com>; from appleton_chris@yahoo.com on Tue, Dec 04, 2001 at 10:33:08AM -0800
References:  <20011204020031.E37981@blossom.cjclark.org> <20011204183308.55175.qmail@web14803.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Tue, Dec 04, 2001 at 10:33:08AM -0800, Chris Appleton wrote:
> 
> --- "Crist J . Clark" <cjc@FreeBSD.ORG> wrote:
> > On Mon, Dec 03, 2001 at 01:10:29PM -0800, Chris
> > Appleton wrote:
> > > i'm trying to setup ipf between my dsl router and
> > the
> > > rest of my c class subnet (2 nic) and don't know
> > about
> > > changing the route table - here it is sort of.
> > > 
> > > #netstat -r 
> > > destination   gateway      flags     netif
> > > 
> > > default      207.250.250.1  UGSc       rl0
> > > localhost    localhost      UH         lo0
> > > 207.250.250  link#1         UC         rl0
> > > 207.250.250.1 "mac address"  UHLW      rl0
> > > 
> > > how can i direct traffic destined for the gateway
> > (.1)
> > > to rl1 and traffic for the rest of the same subnet
> > to
> > > rl0? (while filtering in between - witout
> > bridge(?))
> > > 
> > > as it is, i can't access rl1 at all.
> > 
> > It doesn't make much sense for a machine to have one
> > of its own
> > interfaces as a default route. The default route
> > should be the address
> > of your DSL router.
> 
> 207.250.250.1 IS the dsl router.  i want traffic
> destined for it to use rl0 and traffic for the rest of
> the subnet to use rl1.  then filter in between.  what
> would a rough table look like to accomodate this?

Oops. Misread. Coulda sworn it said 'lo0' for the last interface.

Did you do an ifconfig(8) for your internal network? I don't see an
address for rl1. But now that I read this again, you are trying to do
bridging, but not use bridging? Huh? You need to either, (a) put
separate logical IP networks on either side of the gateway, or (b) do
bridging.
-- 
Crist J. Clark                     |     cjclark@alum.mit.edu
                                   |     cjclark@jhu.edu
http://people.freebsd.org/~cjc/    |     cjc@freebsd.org

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011204182219.A40864>