Date: Sun, 4 Feb 2001 16:30:57 -0800 From: "Crist J. Clark" <cjclark@reflexnet.net> To: "Mark B. Withers" <mwithers@one.net> Cc: Robert Hough <rch@solveinteractive.com>, freebsd-questions <freebsd-questions@FreeBSD.ORG> Subject: Re: Internal gateway/firewall Message-ID: <20010204163057.W91447@rfx-216-196-73-168.users.reflex> In-Reply-To: <20010204104309.E21863@arrakis.desert-power.org>; from mwithers@one.net on Sun, Feb 04, 2001 at 10:42:01AM -0500 References: <20010203160206.B21863@arrakis.desert-power.org> <20010203161125.D21863@arrakis.desert-power.org> <20010203184226.B51545@solveinteractive.com> <20010204104309.E21863@arrakis.desert-power.org>
next in thread | previous in thread | raw e-mail | index | archive | help
[I have rearranged some stuff to make the responses more clear.] On Sun, Feb 04, 2001 at 10:42:01AM -0500, Mark B. Withers wrote: > Robert, > > Thanks for your reply. > > I did some experimenting last night with the two interfaces (had them > both plugged into a hub) [snip] > Feb 3 19:00:51 foobar /kernel: arp: 10.255.23.161 is on ep0 but got > reply from ** mac address of dsl router/modem ** on ep1 [snip a bunch more of that stuff] This is expected when you have two interfaces together on a collision domain. Don't do that. > Proposed ip scheme for ep1: > > ep1 = 192.0.0.1 > subnetmask 255.255.255.248 (thought there was no need for more than 8) > broadcast 192.0.0.7 Although the 192.0.0.0/16 block is reserved, and the 192.0.0.0/24 within that specially reserved on its own, I would avoid that block. It is not a RFC1918 block and with what HP printers do in 192.0.0.0... @#&% [snip] > I wish to have the following format: > > (Network Diagram) > > DSL router/Modem > | > ep0 > | > Foobar --> FreeBSD machine w/2 ISA nics > | > ep1 --> Would bridging be necessary to separate this? > | > Hub > | > Windows machine The ARP messages should go away once you get this set up right like this. You should need no aditional routing entries. They will automatically be added when the interfaces are correctly configured. > I'll probably have to reset the ip address configuration/routing > information on the windows box after I figure out my new kernel > configuration. Recompiling the kernel is necessary for this. Yes, for doing NAT you will need to recompile. See the bottom of the natd(8) page. -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010204163057.W91447>