From owner-freebsd-net@FreeBSD.ORG Mon Apr 28 10:01:18 2014 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id B37A65B1 for ; Mon, 28 Apr 2014 10:01:18 +0000 (UTC) Received: from mp1-smtp-5.eutelia.it (mp1-smtp-5.eutelia.it [62.94.10.165]) by mx1.freebsd.org (Postfix) with ESMTP id 65E1314BA for ; Mon, 28 Apr 2014 10:01:18 +0000 (UTC) Received: from ns2.biolchim.it (ip-188-188.sn2.eutelia.it [83.211.188.188]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mp1-smtp-5.eutelia.it (Eutelia) with ESMTP id 2C20517347D for ; Mon, 28 Apr 2014 11:43:09 +0200 (CEST) Received: from soth.ventu (adsl-ull-90-150.41-151.net24.it [151.41.150.90]) (authenticated bits=0) by ns2.biolchim.it (8.14.8/8.14.8) with ESMTP id s3S9h4lD014101 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL) for ; Mon, 28 Apr 2014 11:43:05 +0200 (CEST) (envelope-from ml@netfence.it) X-Authentication-Warning: ns2.biolchim.it: Host adsl-ull-90-150.41-151.net24.it [151.41.150.90] claimed to be soth.ventu Received: from alamar.ventu (alamar.ventu [10.1.2.18]) by soth.ventu (8.14.8/8.14.7) with ESMTP id s3S9gxNs068510; Mon, 28 Apr 2014 11:42:59 +0200 (CEST) (envelope-from ml@netfence.it) Message-ID: <535E22A3.2090404@netfence.it> Date: Mon, 28 Apr 2014 11:42:59 +0200 From: Andrea Venturoli User-Agent: Mozilla/5.0 (X11; FreeBSD i386; rv:24.0) Gecko/20100101 Thunderbird/24.4.0 MIME-Version: 1.0 To: Dominic Froud Subject: Re: Server with multiple public IP References: <535E1842.20905@netfence.it> <535E1C66.6090004@talk2dom.com> In-Reply-To: <535E1C66.6090004@talk2dom.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.4.3 (ns2.biolchim.it [192.168.2.203]); Mon, 28 Apr 2014 11:43:05 +0200 (CEST) X-Spam-Score: 5.206 (*****) RCVD_IN_PBL, RCVD_IN_RP_RNBL, RCVD_IN_SORBS_DUL, RDNS_DYNAMIC X-Scanned-By: MIMEDefang 2.74 Cc: freebsd-net@freebsd.org X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 28 Apr 2014 10:01:18 -0000 On 04/28/14 11:16, Dominic Froud wrote: > You want source-based routing. Thanks, that term will help me in my searches. > I have this situation and I used pf(4) to do it with a rule like: > > pass out quick route-to ( vlan2 ) from 2.0.0.0/29 to any no state > > As a variation you can give an optional next-hop address if you have a > static router for that vlan, e.g. if your router is 2.0.0.1: > > pass out quick route-to ( vlan2 2.0.0.1 ) from 2.0.0.0/29 to any no state > > Also, you can run pf and ipfw at the same time! Thanks a lot, I think I'll try this. bye av.