From owner-freebsd-questions@FreeBSD.ORG Sun Apr 16 20:57:43 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3BB3A16A401 for ; Sun, 16 Apr 2006 20:57:43 +0000 (UTC) (envelope-from slas7713@yahoo.com) Received: from web38908.mail.mud.yahoo.com (web38908.mail.mud.yahoo.com [209.191.125.114]) by mx1.FreeBSD.org (Postfix) with SMTP id D4AE343D48 for ; Sun, 16 Apr 2006 20:57:42 +0000 (GMT) (envelope-from slas7713@yahoo.com) Received: (qmail 62836 invoked by uid 60001); 16 Apr 2006 20:57:42 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received:Date:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=OE29hihtN4MFQzjJp5fExD7fC8fWvlAcx1gvHOCy0JwqTCJbof+r7L4PptD4TexpltM8njv35qvdk2LMy1+i6rClkEAGUg1TQphREqlBZP9SEuHABZ6ehBsIZ6pGTsafiJ+PmtWqxKWo0eI5hDP9QnPZS5KHqoze5rTS5JgzGdQ= ; Message-ID: <20060416205742.62834.qmail@web38908.mail.mud.yahoo.com> Received: from [66.190.186.188] by web38908.mail.mud.yahoo.com via HTTP; Sun, 16 Apr 2006 13:57:42 PDT Date: Sun, 16 Apr 2006 13:57:42 -0700 (PDT) From: steve lasiter To: free bsd MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Subject: gateway setup X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 Apr 2006 20:57:43 -0000 I just moved into a new position and will be implementing a new network topology and I wanted to use the opportunity to introduce them to FreeBSD. I'll be setting up a FreeBSD gatewall/firewall with 3 NICs behind two networks. Say, fxp0-cable modem to nic1, fxp1-nic2 to a Microsoft Small Business Server 2003 box, and fxp2-nic3 to webserver and wireless. Gateway 10.0.0.1 The first 192.168.1.1/24 network will be gateway - SBS box - switch - LAN with 10 PCs. The second 192.168.10.1/24 network will be gateway - switch - wireless LAN and Windows 2003 box serving as a webserver. Leaves me room to grow on both. My questions: We currently have DSL but are moving to Cable for more speed and I'm trying to get two static IP addresses, one for each network. The reasoning is based on the way the SBS box takes over port 80 and 443 for internal purposes and it appears that redirection would be a mess with the webserver. Is the setup as simple as configuring each of fxp1 and fxp2 NICs to the private addresses and then using the same 10.0.0.1 gateway entries for all? Are there any out there that have set up successful topologies with two IPs and three NICs? What are some of the options and pitfalls? If I only have one IP available and need to direct to several websites on the one network and internal services (using ports 890 and 443) on the other network how can this be routed? All input is appreciated as usual. Steve L __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com