From owner-freebsd-questions Fri Sep 27 14: 1: 8 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6614A37B401 for ; Fri, 27 Sep 2002 14:01:06 -0700 (PDT) Received: from mail.bg (dialup249.varna.spnet.net [213.169.38.249]) by mx1.FreeBSD.org (Postfix) with ESMTP id E7E9C43E77 for ; Fri, 27 Sep 2002 14:01:02 -0700 (PDT) (envelope-from dpenev@mail.bg) Received: from mail.bg (localhost [127.0.0.1]) by mail.bg (8.12.5/8.12.5) with ESMTP id g8S00prM000755; Sat, 28 Sep 2002 00:00:51 GMT (envelope-from dpenev@mail.bg) Received: (from root@localhost) by mail.bg (8.12.5/8.12.5/Submit) id g8S00iDN000754; Sat, 28 Sep 2002 00:00:44 GMT Date: Sat, 28 Sep 2002 00:00:44 +0000 From: "D. Penev" To: "Alek - freebsd@it.cyvox.org" Cc: freebsd-questions@FreeBSD.ORG Subject: Re: 2 gateways - seperate routes for different ports? Message-ID: <20020928000044.GA438@earth.dpsca.bg> Mail-Followup-To: "Alek - freebsd@it.cyvox.org" , freebsd-questions@FreeBSD.ORG References: <1469.203.24.200.7.1033122192.squirrel@webmail.cyvox.org> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1; format=flowed Content-Disposition: inline Content-Transfer-Encoding: quoted-printable In-Reply-To: <1469.203.24.200.7.1033122192.squirrel@webmail.cyvox.org> User-Agent: Mutt/1.4i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Fri, Sep 27, 2002 at 08:23:12PM +1000, Alek - freebsd@it.cyvox.org wrote: >Date: Fri, 27 Sep 2002 20:23:12 +1000 (EST) >Subject: 2 gateways - seperate routes for different ports? >From: "Alek - freebsd@it.cyvox.org" >To: > >Greetings, > >I currently have 2 gateway servers that I would like to consolidate. > >One is a permanent dialup with a static IP - this maintains DNS, routes my >SMTP namespace and is relatively secured with IPFW. >The other is a cable connection with a dynamic IP running NAT but >unsecured because I haven=92t figured out how to configure IPFW with a >dynamic IP=85 yet. >I want to consolidate these 2 boxes, but I would need to route port 25 and >53 traffic through the dialup connection and everything else through the >cable connection? I expect I should be able to do this with IPFW=85? No? >Any ideas / solutions appreciated. Try this: in /etc/ppp/ppp.linkup dialup_isp_label: /sbin/ipfw add XXX fwd HISADDR tcp from any to any 25,53 /sbin/ipfw add YYY fwd HISADDR udp from any to any 25,53 ^^^ numbers depends of ^^^ if you have own dns and/or mail others ipfw rules server change with ip address that they are bind in /etc/ppp/ppp.linkdown dialup_isp_label: /sbin/ipfw delete XXX /sbin/ipfw delete YYY Remove or comment "add default HISADDR" in dialup_isp_label section in ppp.conf and set default route to cable connection . > >Cheers, > >Alek. > > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-questions" in the body of the message --=20 Regards, D. Penev To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message