From owner-freebsd-questions@FreeBSD.ORG  Sat Jun  9 12:56:59 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 5394B16A400
	for <freebsd-questions@freebsd.org>;
	Sat,  9 Jun 2007 12:56:59 +0000 (UTC)
	(envelope-from dzalewski@open-craft.com)
Received: from zeus.lunarpages.com (zeus.lunarpages.com [216.193.211.2])
	by mx1.freebsd.org (Postfix) with ESMTP id 3DBA813C48A
	for <freebsd-questions@freebsd.org>;
	Sat,  9 Jun 2007 12:56:59 +0000 (UTC)
	(envelope-from dzalewski@open-craft.com)
Received: from [196.218.234.98] (helo=polonium.opencraft.local)
	by zeus.lunarpages.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.63)
	(envelope-from <dzalewski@open-craft.com>) id 1Hx0V0-0008NK-O0
	for freebsd-questions@freebsd.org; Sat, 09 Jun 2007 05:56:59 -0700
From: Dominik Zalewski <dzalewski@open-craft.com>
Organization: OpenCraft
To: freebsd-questions@freebsd.org
User-Agent: KMail/1.9.7
MIME-Version: 1.0
Date: Sat, 9 Jun 2007 15:56:53 +0300
Message-Id: <200706091556.53631.dzalewski@open-craft.com>
X-AntiAbuse: This header was added to track abuse,
	please include it with any abuse report
X-AntiAbuse: Primary Hostname - zeus.lunarpages.com
X-AntiAbuse: Original Domain - freebsd.org
X-AntiAbuse: Originator/Caller UID/GID - [0 0] / [47 12]
X-AntiAbuse: Sender Address Domain - open-craft.com
X-Source: 
X-Source-Args: 
X-Source-Dir: 
Content-Type: text/plain;
  charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Subject: FreeBSD arp proxy
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: dzalewski@open-craft.com
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 09 Jun 2007 12:56:59 -0000

Dear All,

I have a problem configuring routing. Here is how my setup looks:

Internet - - - ADSL modem (bridge mode) - - - FreeBSD BOX - - - - - - - Switch - - - - - - - Server 1
                  IPOA: 196.218.x.97                   vr1: 196.218.x.98                |                    bge0: 196.218.x.100
                                     							                   |                                
								            			           |
              												   |
                                                                                                    Server 2
												    eth0: 196.218.x.101	




The idea is to give public IPs to servers behind FreeBSD firewall. I don't want to assagin IP addresses to FreeBSD BOX and use binat. I want to servers have IP assigned to their interfaces so I can
reach them directly from internet.

Someone told me that I have to use arp proxy. As I know FreeBSD has builtin arp proxy using userland arp utillity. 

When I added arp -s 196.218.x.100 mac_address_of_server1 perm pub . I still couldn't reach 196.218.x.100 .


Ofcoure I will have to add: no nat on $ext_if from { 10.0.0.3, 10.0.0.7 } to any .


Thank you in advance,


Dominik