From owner-freebsd-net Tue Feb 25 12:46:29 2003 Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F247937B401 for ; Tue, 25 Feb 2003 12:46:27 -0800 (PST) Received: from consult-scs.com (vpn.consult-scs.com [209.172.126.178]) by mx1.FreeBSD.org (Postfix) with ESMTP id 646B943FBF for ; Tue, 25 Feb 2003 12:46:27 -0800 (PST) (envelope-from vulture@consult-scs.com) Received: from consult-scs.com ([192.168.2.2]) (authenticated bits=0) by consult-scs.com (8.12.6/8.12.6) with ESMTP id h1PKkR2I066346 for ; Tue, 25 Feb 2003 12:46:27 -0800 (PST) Message-ID: <3E5BD624.9080409@consult-scs.com> Date: Tue, 25 Feb 2003 12:46:28 -0800 From: Jonathan Feally User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.0.2) Gecko/20021120 Netscape/7.01 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-net@freebsd.org Subject: Re: cant get out with two interfaces. References: <00c401c2dc12$7d2b31a0$0ea00cc4@abel> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org When monitoring a network, your monitoring interface should have no IP set or an IP address that matches you network with a netmask of 255.255.255.255 if your monitoring software will not work with out an IP. Example: LAN is 192.168.1.0/24(255.255.255.0) fxp0 is 192.168.1.2/24(255.255.255.0) rl0 is 192.168.1.254/32(255.255.255.255) Abel Alejandro wrote: >Hello, I have two interfaces. The rl0 is for monitoring purposes and fxp0 is >for normal internet access. >rl0 is attached to a catalyst port using SPAN, meaning all the traffic going >to the internet gets mirrored to >this port. fxp0 is on the same catalyst. > >If I shutdown rl0 then I can access fxp0 from the outside, but if I ifconfig >rl0 up then >I am just allowed to access fxp0 within machines in the 196.12.X.0 network. > >rl0: flags=8802 mtu 1500 > inet 10.0.0.1 netmask 0xa0000fc broadcast 255.255.255.3 > inet6 fe80::2e0:7dff:fed0:fdf4%rl0 prefixlen 64 scopeid 0x1 > ether 00:e0:7d:d0:fd:f4 > media: Ethernet autoselect (100baseTX ) > status: active >fxp0: flags=8843 mtu 1500 > inet 196.12.X.251 netmask 0xffffff00 broadcast 196.12.160.255 > inet6 fe80::250:8bff:febb:1689%fxp0 prefixlen 64 scopeid 0x2 > inet 196.12.X.10 netmask 0xffffffff broadcast 196.12.160.10 > ether 00:50:8b:bb:16:89 > media: Ethernet autoselect (100baseTX ) > status: active > >Abel Alejandro. > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-net" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message