From owner-freebsd-questions@FreeBSD.ORG Mon Nov 19 04:04:10 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1B2C316A417 for ; Mon, 19 Nov 2007 04:04:10 +0000 (UTC) (envelope-from alexus@gmail.com) Received: from rv-out-0910.google.com (rv-out-0910.google.com [209.85.198.186]) by mx1.freebsd.org (Postfix) with ESMTP id A25A513C43E for ; Mon, 19 Nov 2007 04:04:09 +0000 (UTC) (envelope-from alexus@gmail.com) Received: by rv-out-0910.google.com with SMTP id l15so1382089rvb for ; Sun, 18 Nov 2007 20:03:59 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=3fFqCt0Fb67pzJUweQn09Jb23BvWW9rrHMz5Ej50lm4=; b=DYrbOHcOtzA/eIVRrPBzzBr6HVeoSrSUzygktV3C2/KBJbsGAKImdZF3PR+IfvZMXuV0zYl+FRvtjZ1lCeYUBSKQmyC7+2VcpGtTnXkOhWZGsVQeLuvIHayS5htwypXSNiDSweqXFWVPnBdWKEGXGhkuJZnXZ5k/D55x1Ufze1U= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=kVj3qwKszuF+tB1h26cyfSj5jnnmk/PfFdREJUHYGN2JX0oEQJNcfLkV9u3sj7bPjgSSm55xT+7JlYPI9ohLigiOzReJ6t4uppg+31qxinGS7vVlUmIVFae6q+kQBlw1tsosp3aAAxc/wZVxIef1tq+YL9E/snt5vYc7SIGNs90= Received: by 10.114.161.11 with SMTP id j11mr12837wae.1195445038955; Sun, 18 Nov 2007 20:03:58 -0800 (PST) Received: by 10.114.176.14 with HTTP; Sun, 18 Nov 2007 20:03:58 -0800 (PST) Message-ID: <6ae50c2d0711182003t2b419839y374395d63ce5877d@mail.gmail.com> Date: Sun, 18 Nov 2007 23:03:58 -0500 From: alexus To: "Todor Dragnev" In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <6ae50c2d0711152118h2f2a9989q2b39eba077154041@mail.gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: multihome network X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 Nov 2007 04:04:10 -0000 how i can acomplish this with ipf? i have ipf on that box On Nov 16, 2007 4:45 PM, Todor Dragnev wrote: > Hi, > > you must use advanced routing, this is very easy on linux with > iproute2 but freebsd is far away for now(maybe forever) and you must > use pf or ipf for this situation. > > So, enable pf in rc.conf > pf_enable="YES" > > Add this line to the end of pf.conf: > pass out quick route-to (fxp1 $fxp1_gw) inet from $fxp1_ip to ! > $fxp1_ip keep state > > Where $fxp1_gw must be your gateway on fxp1 interface and $fxp1_ip is > your IP address on fxp1. > Keep your default gateway via 192.168.1.1. With these settings you > can access both 192.168.1.1 and $fxp1_ip from outside. > > Regards, > Todor Dragnev > > > On 16.11.2007, at 07:18, alexus wrote: > > > Hello, > > > > I have two NICs on my box, one (primary) connected to switch and have > > private IP. that IP also have a static route on Cisco PIX for > > accessing this box from outside. the other interface has public IP > > that is connected to another switch, i configure both IPs through > > /etc/rc.conf, but I can not for some reason access my box through that > > public IP, no firewall rules would prevent me from doing so. here is > > my output for netstat -rn > > > > alexus# netstat -rn > > Routing tables > > > > Internet: > > Destination Gateway Flags Refs Use Netif > > Expire > > default 192.168.1.1 UGS 0 250 fxp0 > > 127.0.0.1 127.0.0.1 UH 0 2 lo0 > > 192.168.1 link#1 UC 0 0 fxp0 > > 192.168.1.1 00:0d:29:09:90:61 UHLW 2 2 > > fxp0 1171 > > 192.168.1.250 00:16:cb:94:10:e9 UHLW 1 12 > > fxp0 1169 > > 216.112.241.24/29 link#2 UC 0 0 fxp1 > > > > Internet6: > > Destination Gateway Flags > > Netif Expire > > ::1 ::1 > > UHL lo0 > > fe80::%lo0/64 fe80::1%lo0 > > U lo0 > > fe80::1%lo0 link#4 > > UHL lo0 > > ff01:4::/32 fe80::1%lo0 > > UC lo0 > > ff02::%lo0/32 fe80::1%lo0 > > UC lo0 > > alexus# > > > > what am I missing? > > > > -- > > http://alexus.org/ > > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to "freebsd-questions- > > unsubscribe@freebsd.org" > > -- http://alexus.org/