From owner-freebsd-net@FreeBSD.ORG  Tue Oct 17 07:04:16 2006
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
X-Original-To: freebsd-net@freebsd.org
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4058116A415
	for <freebsd-net@freebsd.org>; Tue, 17 Oct 2006 07:04:16 +0000 (UTC)
	(envelope-from aburke@nullplusone.net)
Received: from alpha.nullplusone.net (sub25-168.member.dsl-only.net
	[63.105.25.168])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D1AAF43D45
	for <freebsd-net@freebsd.org>; Tue, 17 Oct 2006 07:04:15 +0000 (GMT)
	(envelope-from aburke@nullplusone.net)
Received: from leda (leda.int.nullplusone.net [192.168.10.242])
	by alpha.nullplusone.net (8.12.9/8.12.9) with ESMTP id k9H74729058791; 
	Tue, 17 Oct 2006 00:04:08 -0700 (PDT)
	(envelope-from aburke@nullplusone.net)
From: "Aaron Burke" <aburke@nullplusone.net>
To: "Spadge Fromley" <spadge@fromley.net>, <freebsd-net@freebsd.org>
Date: Tue, 17 Oct 2006 00:06:17 -0700
Message-ID: <PGENKKAMCLFNBHPINBGAAEJICOAA.aburke@nullplusone.net>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0)
Importance: Normal
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1506
In-Reply-To: <34229.213.123.179.188.1160991550.squirrel@webmail.fromley.net>
Cc: 
Subject: RE: Static route & NAT
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Oct 2006 07:04:16 -0000

I much of this is from http://www.irbs.net/FreeBSD/FAQ/networking.html .

> > I am wondering how to implement a freebsd router without NAT enbaled?
> > There are 3 subnets connected to this freebsd router. all of 
> them need to
> > access the Internet.
Due to the lack of NAT, I assume that they all use public interfaces.
You may want to look into the installation of routed. 

> I have to admit to not being entirely sure what it is you're asking.
I am not either, but I hope to provide some good info. 

> Does ipfw not just handle it?
It can, but doing so requires that special rules be put in place. Every
rule that is processed accumulates additional delay.

There is an easier way to forward packets from each network. Simply change
'net.inet.ip.forwarding = 0' to 'net.inet.ip.forwarding = 1' via sysctl.
You can also enable this in rc.conf via 'gateway_enable="YES"'.

> 
> I suspect the easiest way may be to have one NIC per subnet in the fbsd
> router, and use natd.
More than one nic is not required, but if you have the slots available, it
can save some increadible headaches. It is possible (however extreemly
unwise) to run all 3 of them in via a single NIC.

SNIP

-- Aaron