From owner-freebsd-net@FreeBSD.ORG  Wed Feb  7 12:05:39 2007
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
X-Original-To: freebsd-net@freebsd.org
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id B933E16A419
	for <freebsd-net@freebsd.org>; Wed,  7 Feb 2007 12:05:38 +0000 (UTC)
	(envelope-from ml.diespammer@netfence.it)
Received: from parrot.aev.net (parrot.aev.net [212.31.247.179])
	by mx1.freebsd.org (Postfix) with ESMTP id B9B3913C4A8
	for <freebsd-net@freebsd.org>; Wed,  7 Feb 2007 12:05:37 +0000 (UTC)
	(envelope-from ml.diespammer@netfence.it)
Received: from soth.ventu (adsl-ull-32-135.51-151.net24.it [151.51.135.32])
	(authenticated bits=128)
	by parrot.aev.net (8.13.8/8.13.8) with ESMTP id l17BvNGC024092
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK)
	for <freebsd-net@freebsd.org>; Wed, 7 Feb 2007 12:57:30 +0100 (CET)
	(envelope-from ml.diespammer@netfence.it)
Received: from [10.1.2.18] (alamar.ventu [10.1.2.18])
	by soth.ventu (8.13.8/8.13.8) with ESMTP id l17BkLhG075540
	for <freebsd-net@freebsd.org>; Wed, 7 Feb 2007 12:46:21 +0100 (CET)
	(envelope-from ml.diespammer@netfence.it)
Message-ID: <45C9BC01.5010803@netfence.it>
Date: Wed, 07 Feb 2007 12:46:09 +0100
From: Andrea Venturoli <ml.diespammer@netfence.it>
User-Agent: Thunderbird 1.5.0.9 (X11/20070119)
MIME-Version: 1.0
To: freebsd-net@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Scanned-By: MIMEDefang 2.57 on 212.31.247.179
Subject: Bridging with two subnets
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: freebsd-net@freebsd.org
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Feb 2007 12:05:39 -0000

Hello.
I've got a firewall which has public IP xxx.xxx.xxx.2 on its first NIC.
This is bridged with a second NIC which holds xxx.xxx.xxx.0/24.
(I also have a third and fourth NIC which runs two private IP networks, 
which are NATted, but I don't think this matters).

Everything is ok, but now I'm in need to also have a second public IP 
network on the second NIC, let's say yyy.yyy.yyy.0/24.
A single upstream router provides us both public nets, but obviously 
with two different gateways (xxx.xxx.xxx.1 and yyy.yyy.yyy.1).

The question is: is this possible?

Do I only need to attach the additional yyy.yyy.yyy.0/24 boxes to the 
same switch?
Do I need to ifconfig alias yyy.yyy.yyy.2 on the first NIC?
What about the gateway then? Do I still set the first one only?

My answers would be: Yes, No, Yes. I thought I'd ask, however.

  bye & Thanks
	av.