From owner-freebsd-pf@FreeBSD.ORG Sun Nov 27 05:21:30 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 505EF106564A for ; Sun, 27 Nov 2011 05:21:30 +0000 (UTC) (envelope-from bc979@lafn.org) Received: from zoom.lafn.org (zoom.lafn.org [108.92.93.123]) by mx1.freebsd.org (Postfix) with ESMTP id F21FF8FC14 for ; Sun, 27 Nov 2011 05:21:29 +0000 (UTC) Received: from [10.0.1.2] (pool-108-23-64-87.lsanca.fios.verizon.net [108.23.64.87]) (authenticated bits=0) by zoom.lafn.org (8.14.3/8.14.2) with ESMTP id pAR4tl5v005499; Sat, 26 Nov 2011 20:55:48 -0800 (PST) (envelope-from bc979@lafn.org) Mime-Version: 1.0 (Apple Message framework v1251.1) Content-Type: text/plain; charset=iso-8859-1 From: Doug Hardie In-Reply-To: <4ED19ADF.90409@gmail.com> Date: Sat, 26 Nov 2011 20:55:47 -0800 Content-Transfer-Encoding: quoted-printable Message-Id: <6B7581DA-1EC8-4C86-BDCC-423A405364C6@lafn.org> References: <4ED19ADF.90409@gmail.com> To: Gholam Mostafa Faridi X-Mailer: Apple Mail (2.1251.1) X-Virus-Scanned: clamav-milter 0.97 at zoom.lafn.org X-Virus-Status: Clean Cc: freebsd-pf@freebsd.org Subject: Re: one ADSL connection with 10 static IPs and PF X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 27 Nov 2011 05:21:30 -0000 On 26 November 2011, at 18:05, Gholam Mostafa Faridi wrote: > we had Leased line before and we had 27 static IPs before , but our = ISP do not support is very well , and we change our ISP and we buy ADSL = connection with 10 static IPs , my NAT Server is OpenBSD 5 , and I will = change it FreeBSD 8.2 . > Can I do this with FreeBSD 8.2 and PF ? Should work fine. I have been running a somewhat similar setup for a = couple years without any issues. > Do I have to add some options in Kernel or no ? Probably not. I use a custom kernel because I need the quota option. > before we change our connection type from Leased line to ADSL , we = have cisco 800 router and Leased line connect to cisco 800 and after = that we connect it to our NAT server , every thing was good and it work = like charm , but after change connection type , ISP give us Zyxcel ADSL = modem with 10 startic IP , and our IPS do not say what we must do with = this ADSL modem and these IPs. > we do not know , which mode we must use in ADSL modem , PPoE or bridge = ? That depends on how the ADSL is configured. You will need to get that = information from the ISP. Or you can try it both ways and see which one = works. The wrong setting will not work at all. You won't be able to = establish a link to the ISP. One of the lights on the modem will remain = red. > we do not know use PPoE or Bridge mode with ADSL modem and our ISP do = not give us enough information , if I want make NAT server with PF with = mode I must set in ADSL modem ? PPoE or bridge ? See above. > we do not know how we must config our NAT server , Probably the only change is to the static IP addresses. > we do not know we need ppp or no ? Probably not. > we do not konw how we must config PF . Should be the same as before with IP addresses changed appropriately. = The only issue might be the pf commands changed somewhat in one of the = later OBSD releases. You may have to revert to the older syntax. > we have to use 10 static IPs and we can not use one static IP , = because of our policy . > which options , I must add to my PF.conf > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" >=20