From owner-freebsd-questions Sat Apr 28 21:19:59 2001 Delivered-To: freebsd-questions@freebsd.org Received: from hotmail.com (f8.law11.hotmail.com [64.4.17.8]) by hub.freebsd.org (Postfix) with ESMTP id 1C46537B423 for ; Sat, 28 Apr 2001 21:19:57 -0700 (PDT) (envelope-from jean_christian@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Sat, 28 Apr 2001 21:19:56 -0700 Received: from 203.216.48.141 by lw11fd.law11.hotmail.msn.com with HTTP; Sun, 29 Apr 2001 04:19:56 GMT X-Originating-IP: [203.216.48.141] From: "Jean-Christian Imbeault" To: freebsd-questions@freebsd.org Subject: What's the proper way to setup two NICs on a firewall? Date: Sun, 29 Apr 2001 04:19:56 -0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 29 Apr 2001 04:19:56.0872 (UTC) FILETIME=[A5D20C80:01C0D063] Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I'm new at this so please ber with me :) I have a laptop with two PCMCIA NICs I want to use as a firewall/gateway. Unfortunately I can't seem to get the darn thing working. I have a few questions I'm hoping someone can answer. Here's my setup: Laptop with two PCMCIA NICS One NIC (ed1) connected to a DSL router/modem DSL router/modem has a private ip (172.25.0.1) and acts as a DHCP server for my internal LAN PCs One NIC (ed2) connected to my internal LAN hub with an ip of 192.168.0.1 A picture would be: ISP | | [Global ip] ROUTER [172.25.0.1] | | [172.25.0.2] ed1 FIREWALL [192.168.0.1] ed2 | | LAN [192.168.0.2 ...] 1- When I use /stand/sysinstall to configure my interfaces it ask me for a default gateway. I'm setting ed1 to use 172.25.0.1 and ed2 to use172.25.0.2 but it seems that the last interface to brought up by /stand/sysinstall sets the default gateway for both interfaces? If I look at my rc.conf file, the deltas added by sysinstall have a line defaultrouter="..." and the ip specified is for the last interfac I brought up. Shouldn't there be one defaultrouter entry for each interface? 2- Which interface is my natd interface? I've tried both but when I run natd -v I can see that the real ip addresses are not really being translated but just used as is. Is this right? Jc _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message