From owner-freebsd-questions Sun Jun 11 23: 5:31 2000 Delivered-To: freebsd-questions@freebsd.org Received: from merlin.prod.itd.earthlink.net (merlin.prod.itd.earthlink.net [207.217.120.156]) by hub.freebsd.org (Postfix) with ESMTP id 7186837BA87 for ; Sun, 11 Jun 2000 23:05:27 -0700 (PDT) (envelope-from cjc@earthlink.net) Received: from dialin-client.earthlink.net (pool0581.cvx20-bradley.dialup.earthlink.net [209.179.252.71]) by merlin.prod.itd.earthlink.net (8.9.3-EL_1_3/8.9.3) with ESMTP id XAA28932; Sun, 11 Jun 2000 23:05:25 -0700 (PDT) Received: (from cjc@localhost) by dialin-client.earthlink.net (8.9.3/8.9.3) id XAA16216; Sun, 11 Jun 2000 23:04:03 -0700 (PDT) Date: Sun, 11 Jun 2000 23:04:02 -0700 From: "Crist J. Clark" To: Ben Williams Cc: freebsd-questions@freebsd.org Subject: Re: UPGRADE 2.2.8 to 4.0R Message-ID: <20000611230401.C16019@dialin-client.earthlink.net> Reply-To: cjclark@alum.mit.edu References: <20000610141556.I1197@dialin-client.earthlink.net> <567.000612@home.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0.1i In-Reply-To: <567.000612@home.com>; from williamsl@home.com on Mon, Jun 12, 2000 at 01:36:57AM -0400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Mon, Jun 12, 2000 at 01:36:57AM -0400, Ben Williams wrote: [snip] > Along these lines I'd like to ask if a "triple-homed routing > bridge" (i.e. 3 NIC's, 2 of which are connected to ISP's and one to > the "internal" LAN) is conceivable or even feasable. If I have my > terminology right a "bridge" connects multiple networks with > optionally (preferably for me) a firewall in place that does not > decrement the TTL of a packet since none of the NIC's on the bridge > have IP's. Would a FreeBSD 3.4R box be capable of this kind of setup? Bridges are link layer devices. Firewalling on a bridge is kind of an odd notion. A bridge really should not need to know anything about IP or whatever the layer three protocol might be, and we ususally think of firewalling at that layer. Of course, we can still do such a thing, but FreeBSD support for a bridge-firewall has a few issues. As for what "tripled-homed" means in this context is beyond me. I've never really picked up what people really mean by multi-homed; they seem to toss it about for a lot of different situations, especially when you realize that you wouldn't be using multiple IP addresses. Now how to bridge between two IPs... That really baffles me. A bridge can be thought of as making the three physical LANs into one logical LAN. Now making the two ISP's LANs into one... Will they approve? > This is -almost- the networking question I asked several days ago > but I didn't get much input then .. hope to hear from you soon! Well, that's mine without more detail. But remember I'm no networking expert. -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message