From owner-freebsd-net@FreeBSD.ORG  Sun Aug 17 14:26:58 2003
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9886437B401
	for <freebsd-net@freebsd.org>; Sun, 17 Aug 2003 14:26:58 -0700 (PDT)
Received: from cicero2.cybercity.dk (cicero2.cybercity.dk [212.242.40.53])
	by mx1.FreeBSD.org (Postfix) with ESMTP id AC3CC43F75
	for <freebsd-net@freebsd.org>; Sun, 17 Aug 2003 14:26:57 -0700 (PDT)
	(envelope-from db@traceroute.dk)
Received: from user5.cybercity.dk (fxp0.user5.ip.cybercity.dk [212.242.41.51])
	by cicero2.cybercity.dk (Postfix) with ESMTP id D9B4D18F5D9
	for <freebsd-net@freebsd.org>; Sun, 17 Aug 2003 23:26:55 +0200 (CEST)
Received: from main (port132.ds1-arsy.adsl.cybercity.dk [212.242.239.73])
	by user5.cybercity.dk (Postfix) with SMTP id 1DD1056327
	for <freebsd-net@freebsd.org>; Sun, 17 Aug 2003 23:26:55 +0200 (CEST)
Date: Sun, 17 Aug 2003 23:27:02 +0200
From: Socketd <db@traceroute.dk>
To: freebsd-net@freebsd.org
Message-Id: <20030817232702.593dc25e.db@traceroute.dk>
X-Mailer: Sylpheed version 0.8.10claws (GTK+ 1.2.10; i386-portbld-freebsd4.8)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Subject: FreeBSD gateway
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 17 Aug 2003 21:26:58 -0000

Hi

Just wanted to know how this is usually done.
I have:
	1. One router
	2. One gateway (FreeBSD 5.1)
	3. One LAN
	4. One DMZ

Now I was thinking:

Router (PPP setup and no IP)
  |
  |
Gateway	(Natd and firewalling)
  |\
  | \
  |  \
  |   \
Lan   DMZ

Now, should I nat the DMZ? 
If no, can the NIC to the DMZ and the NIC to the router be setup with no
IP's? So that they just forward all traffic?

br
socketd

ps: Please CC to me as I am not on the list.