From owner-freebsd-security Thu Aug 9 3:11:51 2001 Delivered-To: freebsd-security@freebsd.org Received: from pa169.kurdwanowa.sdi.tpnet.pl (pa169.kurdwanowa.sdi.tpnet.pl [213.77.148.169]) by hub.freebsd.org (Postfix) with ESMTP id A10DA37B403 for ; Thu, 9 Aug 2001 03:10:41 -0700 (PDT) (envelope-from kzaraska@student.uci.agh.edu.pl) Received: by pa169.kurdwanowa.sdi.tpnet.pl (Postfix, from userid 1001) id EF3241C87; Thu, 9 Aug 2001 12:04:44 +0200 (CEST) Received: from localhost (localhost [127.0.0.1]) by pa169.kurdwanowa.sdi.tpnet.pl (Postfix) with ESMTP id A5642548B; Thu, 9 Aug 2001 12:04:44 +0200 (CEST) Date: Thu, 9 Aug 2001 12:04:44 +0200 (CEST) From: Krzysztof Zaraska X-Sender: kzaraska@lhotse.zaraska.dhs.org To: webdesigns COMNET Cc: freebsd-security@FreeBSD.ORG Subject: Re: Routes In-Reply-To: <005f01c1209c$99ee68d0$bd7ba8c0@critter> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, 9 Aug 2001, webdesigns COMNET wrote: > Hi everyone, > > On my 4.3-STABLE box I have a new IP subnet implemented. The box is > connected to a router via a dmz host (internal ip). The router is > connected to the net with a different ip than the subnets. The only > communication to the outside world is through my router's internal ip. > I have set the defaultrouter="router's ip" in rc.conf and I have > access to the internet, except my ip address translates to the > external ip of the router. (Which I don't want) I would like all > connections from my FreeBSD box to show on the internet as one or any > of my subnet ip's. Can someone help define a setup to get my subnet > working. Address translation is usually done by routers, thus it seems to me that this is the issue of router configuration. Unless you machine uses private IPs (that is one with subnet number of 10.0.0.0/8, 172.16.0.0/12 or 192.168.0.0/16) router may be reconfigured to stop translating your IP(s). This may however be a serious conflict with local security policy at your site, since internal addresses are usually hidden for some reason. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message