From owner-freebsd-net@FreeBSD.ORG Fri Nov 14 09:41:23 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 425F716A4CE for ; Fri, 14 Nov 2003 09:41:23 -0800 (PST) Received: from modernage.dns-safe.com (ns3.dns-safe.com [64.62.137.158]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7591443FAF for ; Fri, 14 Nov 2003 09:41:22 -0800 (PST) (envelope-from jason@dixongroup.net) Received: from md-wmnsmd-cuda1-c8c-27.chvlva.adelphia.net ([68.170.95.27] helo=uniauth1.corp.digex.com) by modernage.dns-safe.com with esmtp (Exim 4.24) id 1AKhwg-00043p-Ck for freebsd-net@freebsd.org; Fri, 14 Nov 2003 11:41:00 -0600 From: Jason Dixon To: freebsd-net@freebsd.org In-Reply-To: <1068813508.814.4.camel@localhost> References: <1068789760.2775.18.camel@lappy.fuzzypenguin.net> <1068813508.814.4.camel@localhost> Content-Type: text/plain Organization: DixonGroup Consulting Message-Id: <1068831665.2775.33.camel@lappy.fuzzypenguin.net> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.0 Date: 14 Nov 2003 12:41:05 -0500 Content-Transfer-Encoding: 7bit X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - modernage.dns-safe.com X-AntiAbuse: Original Domain - freebsd.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - dixongroup.net Subject: Re: Static route via address, not interface X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Nov 2003 17:41:23 -0000 On Fri, 2003-11-14 at 07:38, Vladimir B. Grebenschikov wrote: > I guess - you already have 192.168.0.0/24 route entry, added by command: > ifconfig fxp0 192.168.0.53/24 > > so now you need: > remove network route via interface: > route delete 192.168.0.0/24 > add interface route (kernel should know how to reach router) > route add 192.168.0.1/32 -iface fxp0 -cloning > and then add network route via router > route add 192.168.0.0/24 192.168.0.1 I guess I didn't make it clear enough, let me try again. I'm attempting to create a static route for my FreeBSD host so that *all* local traffic is routed across the gateway firewall, rather than being delivered on the local network segment, as is the default with LANs. If you view the routing table (below) again, you'll notice that traffic from the FreeBSD box (192.168.0.53) to another box on the same subnet (192.168.0.42) is still being delivered locally, rather than being routed through the gateway (192.168.0.1). This is *after* I've added a static route for 192.168.0.0/24 to use 192.168.0.1. Destination Gateway Flags Refs Use Netif Expire default 192.168.0.1 UGSc 2 0 fxp0 127.0.0.1 127.0.0.1 UH 1 0 lo0 192.168.0 link#1 UC 3 0 fxp0 192.168.0.1 00:a0:cc:e2:7e:f4 UHLW 3 808 fxp0 596 192.168.0.42 00:05:5d:a6:df:e3 UHLW 1 63 fxp0 992 192.168.0.53 127.0.0.1 UGHS 0 0 lo0 There are no routers inbetween. Just a host on a LAN behind a firewall (which routes between the LAN and the internet, of course). -- Jason Dixon, RHCE DixonGroup Consulting http://www.dixongroup.net