From owner-freebsd-questions  Mon Oct  4  7:12:24 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from smtp02.wxs.nl (smtp02.wxs.nl [195.121.6.60])
	by hub.freebsd.org (Postfix) with ESMTP id 8118214D61
	for <freebsd-questions@freebsd.org>; Mon,  4 Oct 1999 07:12:13 -0700 (PDT)
	(envelope-from asmodai@wxs.nl)
Received: from daemon.ninth-circle.org ([195.121.196.47]) by smtp02.wxs.nl
          (Netscape Messaging Server 3.61)  with ESMTP id AAF6D4E;
          Mon, 4 Oct 1999 16:12:10 +0200
Received: (from asmodai@localhost)
	by daemon.ninth-circle.org (8.9.3/8.9.3) id PAA65315;
	Mon, 4 Oct 1999 15:51:40 +0200 (CEST)
	(envelope-from asmodai)
Date: Mon, 4 Oct 1999 15:51:40 +0200
From: Jeroen Ruigrok/Asmodai <asmodai@wxs.nl>
To: Yusuf Goolamabbas <yusufg@outblaze.com>
Cc: freebsd-questions@freebsd.org
Subject: Re: Would like to mix static IP's and non-routable IP's on a LAN
Message-ID: <19991004155140.E63946@daemon.ninth-circle.org>
References: <19991004081357.27746.qmail@yusufg.portal2.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0pre3i
In-Reply-To: <19991004081357.27746.qmail@yusufg.portal2.com>
Organisation: Ninth-Circle Enterprises
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On [19991004 10:36], Yusuf Goolamabbas (yusufg@outblaze.com) wrote:
>Hi, I have a bunch of static IP's allocated to me (/26) network and I
>would like to reclaim some static IP's and replace them with non
>routable IP's (192.168.x.x). I read about NAT and tried to configure a 
>machine with NAT and make it be the gateway.
>
>All machines currently have a netmask of 255.255.255.192 and if I use
>the 192.168.x.x address space. I get a netmask of 255.255.255.0. I am
>not sure if this mismatch is allowed since the machines are on the
>same segment

I assume the gateway to be multihomed [having two NICs or more].

This would mean that the first NIC has an official address and the other
NIC a local/free.

Then you could simply follow the directions from natd(8) and create a
working NAT set-up.

I don't think the netmask should be of any influence to the NAT working.

I have two interfaces, one fxp0 - the outgoing one, and ep0 the
LAN-side. I use this for successful NAT. Note that I haven't added any
more rules simply due to time restrictions ;)

ipfw=/sbin/ipfw

${ipfw} -f flush
${ipfw} add 4000 divert natd all from any to any via fxp0
${ipfw} add 65000 pass all from any to any

HTH,

-- 
Jeroen Ruigrok van der Werven/Asmodai                  asmodai(at)wxs.nl
The BSD Programmer's Documentation Project <http://home.wxs.nl/~asmodai>
Network/Security Specialist        BSD: Technical excellence at its best
I know you have tried, to Feel...


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message