From owner-freebsd-isp@FreeBSD.ORG Sat Jul 26 10:15:27 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DCE8B37B401 for ; Sat, 26 Jul 2003 10:15:27 -0700 (PDT) Received: from misery.sdf.com (misery.sdf.com [207.200.153.226]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5E71943F75 for ; Sat, 26 Jul 2003 10:15:26 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 19gQt5-00008a-00; Sat, 26 Jul 2003 08:23:11 -0700 Date: Sat, 26 Jul 2003 08:23:09 -0700 (PDT) From: Tom Samplonius To: Evren Yurtesen In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org Subject: Re: VLAN with/and NATD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 26 Jul 2003 17:15:28 -0000 On Sat, 26 Jul 2003, Evren Yurtesen wrote: > Hi, > I would like to have a machine with 2 ethernets 1 is for outside > connection(internet) the other one is for inside connections(VLANs) > > Now the problem is that I want to use NAT inside VLANs that, lets say I > want to be able to use use 192.168.1.0/24 IP block in every VLAN and in > different VLAN's the same IPs should be able to be used. If you use the single 192.168.1.0/24 for all your VLANs, and you do not subnet it further, you don't really have multiple VLANs. You just have one. > Does anybody have any suggestion how to do this? I would guess that I need > multiple IP addresses in the outside interface but how do I map the VLAN > interfaces to use those IPs with NAT? No, you can multiple internal interfaces without problem. natd only cares about traffic leaving and entering the external interface. > Evren Tom