From owner-freebsd-questions@FreeBSD.ORG Fri Oct 8 09:51:56 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9F7AA16A4CE for ; Fri, 8 Oct 2004 09:51:56 +0000 (GMT) Received: from merke.itea.ntnu.no (merke.itea.ntnu.no [129.241.7.61]) by mx1.FreeBSD.org (Postfix) with ESMTP id E91F843D1D for ; Fri, 8 Oct 2004 09:51:55 +0000 (GMT) (envelope-from svein-freebsd-questions@theloosingend.net) Received: from localhost (localhost [127.0.0.1]) by merke.itea.ntnu.no (Postfix) with ESMTP id 64A5F13C5CD for ; Fri, 8 Oct 2004 11:51:54 +0200 (CEST) Received: from mirrorball.thelosingend.net (m069c.studby.ntnu.no [129.241.130.69]) by merke.itea.ntnu.no (Postfix) with SMTP for ; Fri, 8 Oct 2004 11:51:54 +0200 (CEST) Received: (qmail 26399 invoked by uid 1001); 8 Oct 2004 09:51:53 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 8 Oct 2004 09:51:53 -0000 Date: Fri, 8 Oct 2004 11:51:53 +0200 (CEST) From: Svein Halvor Halvorsen X-X-Sender: sveinhal@mirrorball.thelosingend.net To: questions@freebsd.org Message-ID: <20041008111716.F17766@mirrorball.thelosingend.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Content-Scanned: with sophos and spamassassin at mailgw.ntnu.no. Subject: Network setup X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: questions@freebsd.org List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 08 Oct 2004 09:51:56 -0000 At home I have in my network: - A FreeBSD server - A FreeBSD workstation - A Windows gaming box - A FreeBSD laptop - A friend's backup server All are connected to a switch witch in turn is connected to the internett. I have real ethernet comming into my house, and all my machines have public IP-addresses which are handed out by a DHCP server outside of my control. Since my ISP have started to enforce soft bandwidth limiting, with the consequence of losing my connection for 48 hours if exceeded, I need some mean to count my traffic. Only traffic outside the subnet is counted. I therefore thought I could put another FreeBSD machine between my switch and the internet, which counts traffic (and also acts as a firewall). However, I can not afford to get another box to do this. So I thought I could use the server. I also want to put a wireless card in the firewall to allow me to move around with my laptop. Something like this: Internet | | | --------------- | fxp0 | | | -------------- | FBSD Server | ) ) ) | Laptop | | | 802.11 | FreeBSD | | fxp1 | -------------- --------------- | ---------- | Switch | ---------- | ------------------------------- | | | ----------------- | ----------------- | Workstation 1 | | | Workstation 2 | | FreeBSD | | | Windows | ----------------- | ----------------- | ------------------- | Friend's server | | FreeBSD | ------------------- I'd like the possibility to have the workstations on the public internet (with public IP-addresses handed out by my ISP's DHCP sever). I must admit I'm out of my league here, but I guess I'd like the FBSD server to be invisible for the workstations and the backup server, but still be able analyse the IP-traffic. Is this possible? Does this kind of setup have a name, for which I can google? If this is impossible, I guess I could setup NAT on the server/firewall, and forward a couple of ports to the server behind the firewall. The issue is that all the traffic needs to be counted, and at least two machines needs to be visible on the public internet. Additionally I'd like to have a wireless connection for my laptop. I guess an ad-hoc setup would do for this? SVein Halvor