From owner-freebsd-questions Sat Aug 24 17:54:23 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F3C3937B400 for ; Sat, 24 Aug 2002 17:54:21 -0700 (PDT) Received: from ns1.webwarrior.net (overlord-host99.dsl.visi.com [209.98.86.99]) by mx1.FreeBSD.org (Postfix) with ESMTP id 797C043E42 for ; Sat, 24 Aug 2002 17:54:21 -0700 (PDT) (envelope-from friar_josh@webwarrior.net) Received: from markx.vladsempire.net (12-218-27-215.client.mchsi.com [12.218.27.215]) by ns1.webwarrior.net (Postfix) with ESMTP id 416AA251BA; Sat, 24 Aug 2002 20:53:10 -0500 (CDT) Subject: Re: Setting up a gateway to just pass data From: Josh Paetzel Reply-To: friar_josh@webwarrior.net To: Troy Drake Cc: freebsd-questions@freebsd.org In-Reply-To: <3D67FFDD.DC2EFEB2@myrealbox.com> References: <3D67FFDD.DC2EFEB2@myrealbox.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.5 Date: 24 Aug 2002 19:53:00 +0000 Message-Id: <1030218781.256.1.camel@markx.vladsempire.net> Mime-Version: 1.0 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Sat, 2002-08-24 at 21:51, Troy Drake wrote: > Hi guys, > With my current ISP I get 3 IP's, and I want to setup my FBSD box to > simply pass packets between NIC's, pretty much so I can just utilize > ipfilter as a firewall for my other machine. I've got both cards setup > in the FBSD box, fxp0 and fxp1. fxp0 will be the one connecting to the > modem, and fxp1 connected to a hub for other machines. I've read some > tutorials, but they seem to only cover setting up private IP's for the > internal network, but this wont work as I want to have my other machine > still get it's own external IP. I'm thinking I need to enable it as a > gateway, add BRIDGE in the kernel, then set ipfilter to pass all from > fxp0 to fxp1 and vice versa, but I wanted to hear from you guys who may > have done this. > > Please CC me as I'm not currently subscribed. > > Thanks, > Troy What you want to do is build a packet filtering bridge. There are a number of documents that cover this topic, such as this one: http://www.freebsd.org/doc/en_US.ISO8859-1/articles/filtering-bridges/ Josh To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message