From owner-freebsd-questions Fri Nov 2 12:54:18 2001 Delivered-To: freebsd-questions@freebsd.org Received: from gull.prod.itd.earthlink.net (gull.mail.pas.earthlink.net [207.217.120.84]) by hub.freebsd.org (Postfix) with ESMTP id EAA5337B403 for ; Fri, 2 Nov 2001 12:54:10 -0800 (PST) Received: from dialup-209.247.136.94.dial1.sanjose1.level3.net ([209.247.136.94] helo=blossom.cjclark.org) by gull.prod.itd.earthlink.net with esmtp (Exim 3.33 #1) id 15zlKL-0005GN-00; Fri, 02 Nov 2001 12:54:10 -0800 Received: (from cjc@localhost) by blossom.cjclark.org (8.11.6/8.11.3) id fA2Krhs09758; Fri, 2 Nov 2001 12:53:43 -0800 (PST) (envelope-from cjc) Date: Fri, 2 Nov 2001 12:53:43 -0800 From: "Crist J. Clark" To: Jon Molin Cc: "freebsd-questions@FreeBSD.ORG" Subject: Re: Spoofing mac-addr Message-ID: <20011102125343.O4360@blossom.cjclark.org> Reply-To: cjclark@alum.mit.edu References: <3BE15D4C.F50393BF@resfeber.se> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3BE15D4C.F50393BF@resfeber.se>; from Jon.Molin@resfeber.se on Thu, Nov 01, 2001 at 03:33:48PM +0100 X-URL: http://people.freebsd.org/~cjc/ Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Thu, Nov 01, 2001 at 03:33:48PM +0100, Jon Molin wrote: > I asked a question yesterday with the subject 'Firewall question'. I got > two good replies but i realise now that i asked the wrong question. > > Here's the problem; > My isp gives me up to 4 ip's, but not static ones. I want to have a > firewall since this isn't provided but i don't want nat'ed addresses for > my workstations behind the fw. > > So my plan was, tell my firewall to lease 4 addresses, use one to be the > gw for my lan. Then put 3 in my dhcpd.conf and also edit ipchains. The > second nic on my fw will have the ip 192.168.0.1 and will be the gw for > my workstations, it will also share the 3 leftover ip's that i fetched. > > ws - hub \ > ws - hub - gw(local dhcp with ip 192.168.0.1)/fw - ISP DHCP > fs - hub / > > Now, is there a way of doing this? I guess there's allways a way of > solving the problem but is it realistic? From how you have described this, you actually want to use your gateway as a bridge, not a router. -- Crist J. Clark | cjclark@alum.mit.edu | cjclark@jhu.edu http://people.freebsd.org/~cjc/ | cjc@freebsd.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message