From owner-freebsd-questions Sat Apr 1 10:55:59 2000 Delivered-To: freebsd-questions@freebsd.org Received: from fw.wintelcom.net (ns1.wintelcom.net [209.1.153.20]) by hub.freebsd.org (Postfix) with ESMTP id E930F37B60F for ; Sat, 1 Apr 2000 10:55:55 -0800 (PST) (envelope-from bright@fw.wintelcom.net) Received: (from bright@localhost) by fw.wintelcom.net (8.10.0/8.10.0) id e31JKlp04893; Sat, 1 Apr 2000 11:20:47 -0800 (PST) Date: Sat, 1 Apr 2000 11:20:47 -0800 From: Alfred Perlstein To: Sergei Vyshenski Cc: freebsd-questions@FreeBSD.ORG Subject: Re: source address from multihomed host Message-ID: <20000401112047.U21029@fw.wintelcom.net> References: <3.0.5.32.20000401125236.007bbd60@vivaldi> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0.1i In-Reply-To: <3.0.5.32.20000401125236.007bbd60@vivaldi>; from svysh@pn.sinp.msu.ru on Sat, Apr 01, 2000 at 12:52:36PM +0400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG * Sergei Vyshenski [000401 01:18] wrote: > BIND-8 has a nice configuration feature. Source address > for outgoing UDP queries from a multihomed host can be > fixed to a single IP number, irrespective of query destination. > This makes things like firewalls more clear and error-free. > > Can FreeBSD solve this at a system level, > that is extend this feature to TCP packets, and > to other daemons (say sendmail)? The source number is always fixed on outgoing connections, but it's up to the application to specify if it wants to use an IP address other than the primary. You may want to look at the manpage for 'jail' as it allows you to create virtual machines where the primary IP of the virtual machine is different from the primary of the whole box. -- -Alfred Perlstein - [bright@wintelcom.net|alfred@freebsd.org] "I have the heart of a child; I keep it in a jar on my desk." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message