From owner-freebsd-questions@FreeBSD.ORG Wed Jun 23 21:05:30 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3829916A4CE for ; Wed, 23 Jun 2004 21:05:30 +0000 (GMT) Received: from smtpout.mac.com (smtpout.mac.com [17.250.248.86]) by mx1.FreeBSD.org (Postfix) with ESMTP id E288943D2D for ; Wed, 23 Jun 2004 21:05:29 +0000 (GMT) (envelope-from cswiger@mac.com) Received: from mac.com (smtpin01-en2 [10.13.10.146]) by smtpout.mac.com (Xserve/MantshX 2.0) with ESMTP id i5NL5BPT006644; Wed, 23 Jun 2004 14:05:12 -0700 (PDT) Received: from [10.1.1.193] (nfw2.codefab.com [199.103.21.225] (may be forged)) (authenticated bits=0)i5NL5ATP000877; Wed, 23 Jun 2004 14:05:11 -0700 (PDT) In-Reply-To: <001301c45960$79400df0$0b83050a@span.bay> References: <001301c45960$79400df0$0b83050a@span.bay> Mime-Version: 1.0 (Apple Message framework v618) Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: <02CDC2F1-C559-11D8-86C5-003065ABFD92@mac.com> Content-Transfer-Encoding: 7bit From: Charles Swiger Date: Wed, 23 Jun 2004 17:05:09 -0400 To: Tomica Crnek X-Mailer: Apple Mail (2.618) cc: freebsd-questions@freebsd.org Subject: Re: something through nat - something not X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Jun 2004 21:05:30 -0000 On Jun 23, 2004, at 4:27 PM, Tomica Crnek wrote: > box is connected to one (outside) network with 2 interfaces What does this mean? > what I want to do is to configure it to route packets to these > "chosen" subnets directly - no nat, but I want to be able to see > entire outside network from inside net also. Standard IP-based routing will move packets from one subnet to another subnet, without using NAT. I'm not sure what you mean by "able to see" in this context, however: are you talking about being able to send IP traffic to them, are you talking about having them on the same physical subnet by bridging, and thus be able to ARP the hosts even though they are on two different logical networks, or what? > So these packets should be passed to natd. I don't know which outside > interface will be chosen because both outside interfaces are in > dynamic routing backbone. Above you said "no nat", here you ask about passing some traffic to natd. What are you trying to do? Do you want to use NAT or not? Your second comment about "which outside interface will be chosen" is also unclear. What dynamic routing is going on, and what does the topology look like? -- -Chuck