From owner-freebsd-questions Tue Mar 11 15:59:38 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id PAA21244 for questions-outgoing; Tue, 11 Mar 1997 15:59:38 -0800 (PST) Received: from cedb.dpcsys.com (cedb.DPCSYS.com [209.25.4.3]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA21238 for ; Tue, 11 Mar 1997 15:59:35 -0800 (PST) Received: from localhost (dan@localhost) by cedb.dpcsys.com (8.8.5/8.8.2) with SMTP id XAA11273; Tue, 11 Mar 1997 23:59:24 GMT Date: Tue, 11 Mar 1997 15:59:23 -0800 (PST) From: Dan Busarow To: George Yobst cc: questions@freebsd.org Subject: Re: Simple ipfw config? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 11 Mar 1997, George Yobst wrote: > After reading the handbook and archived mail messages it's still not > clear if I can insert a simple firewall box (with 2 net cards) between > my router and hub AND keep the same ip numbers on a class C? I'm only > currently using numbers 1-100. I'd like to keep this first stab at > filtering as simple as possible and not have to use Ipfilter or NAT. > Is this doable? Pointers, config examples, comments, even flames, I haven't tried this but it will *probably* work # interface to lan ifconfig ed0 123.123.123.1 netmask 0xffffff00 # interface connected to router ifconfig ed1 123.123.123.2 netmask 0xffffffff route add default 123.123.123.2 ifconfig should have taken care of the route to the lan. Dan -- Dan Busarow 714 443 4172 DPC Systems / Beach.Net dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82