From owner-freebsd-questions Fri Jan 12 16:29:42 2001 Delivered-To: freebsd-questions@freebsd.org Received: from nisser.com (c0039.upc-c.chello.nl [212.187.0.39]) by hub.freebsd.org (Postfix) with ESMTP id 97AAC37B400 for ; Fri, 12 Jan 2001 16:29:24 -0800 (PST) Received: from nisser.com (roelof [10.0.0.2]) by nisser.com (8.9.3/8.9.2) with ESMTP id BAA40522; Sat, 13 Jan 2001 01:26:51 +0100 (CET) (envelope-from roelof@nisser.com) Message-ID: <3A5FA0CB.F84A52A3@nisser.com> Date: Sat, 13 Jan 2001 01:26:51 +0100 From: Roelof Osinga Organization: Nisser - Nr. 1 in Veiligheid X-Mailer: Mozilla 4.72 [en] (Windows NT 5.0; U) X-Accept-Language: en,pdf MIME-Version: 1.0 To: Eric Nilson Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Firewall/ Routing References: <20010111235959.5991.qmail@web10011.mail.yahoo.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Eric Nilson wrote: > > Dear Mailing list members: > > Here is an interesting problem that I have been trying > to figure out with very little success... > > I am attempting to set up a FreeBSD server as a > gateway/ firewall to two independent ISPs for a > 192.168.x.x internal network. Here is some of the > criteria: > > ... I believe Gerd has written down a nice summary. Believe in that I only glimpsed it . In this very mailing list (archived) you can find several messages by yours truly. You see, till about a year or so ago I was sort of running like that. Without the automatic fallover. It also describes the configuration(s) I used in detail. In detail since I had a tiny problem with it. A problem the guru's that be assured me was purely my own fault. But even if I *did* listen to them, the problem would not go away. Don't ask me what the problem was, this more than a week ago ;). It was a minor problem, no show stopper. Had to do, IMHO, with the fact that the two ISPs used distinct address ranges. You see, this was on a single CATV link and thus using one NIC. I'm still of the opinion that the aliassing code was not designed for that. But then, what do I know? ;). If you can use two NICs (besides the NIC for the internal net) you should have no problem. Roelof -- Home is where the (@) http://eboa.com/ is. Nisser home -- http://www.Nisser.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message