From owner-freebsd-hackers  Fri Apr 14  6:41:22 2000
Delivered-To: freebsd-hackers@freebsd.org
Received: from info.iet.unipi.it (info.iet.unipi.it [131.114.9.184])
	by hub.freebsd.org (Postfix) with ESMTP id 47DE337B5D5
	for <hackers@FreeBSD.ORG>; Fri, 14 Apr 2000 06:41:17 -0700 (PDT)
	(envelope-from luigi@info.iet.unipi.it)
Received: (from luigi@localhost)
	by info.iet.unipi.it (8.9.3/8.9.3) id PAA02484;
	Fri, 14 Apr 2000 15:40:41 +0200 (CEST)
	(envelope-from luigi)
From: Luigi Rizzo <luigi@info.iet.unipi.it>
Message-Id: <200004141340.PAA02484@info.iet.unipi.it>
Subject: Re: Misuse of options BRIDGE?
In-Reply-To: <Pine.BSF.4.10.10004140203520.6886-100000@barricuda.bsd.nws.net>
 from Kris Kirby at "Apr 14, 2000 02:14:32 am"
To: Kris Kirby <kris@hiwaay.net>
Date: Fri, 14 Apr 2000 15:40:41 +0200 (CEST)
Cc: hackers@FreeBSD.ORG
X-Mailer: ELM [version 2.4ME+ PL61 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

> I've got a machine I'm trying to use to break a /24 into a few smaller
> groups. I've got it options BRIDGE in the kernel, four ethernet cards
> (mx0, pn0, ed0, ed1), and need to figure out the right way to do this:

sysctl -w net.link.ether.bridge=1 is necessary to enable
bridging, and you need to set the address only on one of the
interfaces (if you want an IP for the bridge at all).

	cheers
	luigi

> I've got /24 on one side of the machine. I need a /27 (0-32) to be seen on
> both sides (the router is .1, the most of the machines I want to firewall
> are on .2-31). I have a NAS running from .33 to .190, and a /26 (192-255)
> for another subnet. The NAS and router are on the /24. The auth server,
> .6, needs to be able to communicate fairly directly with both the NAS
> (.10). I don't want the NAS behind the firewall. If it is, it will be on a
> seperate port. I'd tried running all three with a /24 netmask, but I still
> don't see packets getting forwarded. I  do have the sysctl set to 1 for
> that. (aka gateway_enable="YES").
> 
> I'd apprecaite any input from the group.... Apoligize if I seem a little
> terse; it's late and I'm not all here....
> -----
> Kris Kirby, KE4AHR          | TGIFreeBSD... 'Nuff said.
> <kris@nospam.hiwaay.net>    |    
> -------------------------------------------------------
> "God gave them the ability to reproduce...
> 	... Science gave us the hope they won't." -KBK
> 
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-hackers" in the body of the message
> 



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message