From owner-freebsd-ipfw@FreeBSD.ORG  Sun Jan  2 06:42:44 2011
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 3B099106566B
	for <freebsd-ipfw@freebsd.org>; Sun,  2 Jan 2011 06:42:44 +0000 (UTC)
	(envelope-from nima.gooler@gmail.com)
Received: from mail-yx0-f182.google.com (mail-yx0-f182.google.com
	[209.85.213.182])
	by mx1.freebsd.org (Postfix) with ESMTP id EA8E78FC08
	for <freebsd-ipfw@freebsd.org>; Sun,  2 Jan 2011 06:42:43 +0000 (UTC)
Received: by yxh35 with SMTP id 35so5451105yxh.13
	for <freebsd-ipfw@freebsd.org>; Sat, 01 Jan 2011 22:42:43 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:received:mime-version:received:in-reply-to
	:references:from:date:message-id:subject:to:content-type;
	bh=E1kIrLaXUhou08Si5OBgvLePlrLPTAwQLt68Awqtguc=;
	b=RUx4t+GCUvdgFt0QB08nw3bNzRvisQdJesIFuBhCaXxvszCSS50/diqr7uWaQRLuRg
	sAsb28szOF0y2vAHwzs4lS9RKXXL6fCM4S9fZKdJE1gzzqpsaTYulZHu7ZLFfPghIXTQ
	KcL+b4PInjj3dt6pQ2RB/TQOWAX+dt1gE9IcQ=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:in-reply-to:references:from:date:message-id:subject:to
	:content-type;
	b=abbUvhDFhovNZqpxIvYh2df+aMByTXPMFHPNDsdmnE71/diZ9SbAjMCQVWd8mBZ6hV
	Mq91LScDyH9DtDKeZiZQkT0Rv/HE3WTN+A/A7szm8LeH+8+Co+9CeYniiLghQRlPxDYf
	4XXabPIKw+Caru7rhmeQWFOy1NBHhYidEvGuQ=
Received: by 10.101.6.12 with SMTP id j12mr11782138ani.46.1293950563089; Sat,
	01 Jan 2011 22:42:43 -0800 (PST)
MIME-Version: 1.0
Received: by 10.100.250.17 with HTTP; Sat, 1 Jan 2011 22:42:23 -0800 (PST)
In-Reply-To: <4D1FC784.2000409@freebsd.org>
References: <AANLkTinKTWGOmK9Pu92AgCcgvVHzsh4hD0PvH_1LXRH5@mail.gmail.com>
	<4D1FC784.2000409@freebsd.org>
From: Nima Khoramdin <nima.gooler@gmail.com>
Date: Sun, 2 Jan 2011 10:12:23 +0330
Message-ID: <AANLkTimVwgONiMpdvBdk5-MKQyjmeW+MOYubHcY8_+B6@mail.gmail.com>
To: freebsd-ipfw@freebsd.org
Content-Type: text/plain; charset=UTF-8
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Subject: IPFW - NAT - two gateway -HELP
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 02 Jan 2011 06:42:44 -0000

hello again

ok Maybe I was wrong explain. I already have an ip address in my network is
working with NAT ( nat to internal web server )  , i want to add another NIC
with a new isp (IP) for backup, and new nat rule.

how can i set two separated  gateways on freebsd.

thanx

---------- Forwarded message ----------
From: Julian Elischer <julian@freebsd.org>
Date: Sun, Jan 2, 2011 at 4:02 AM
Subject: Re: IPFW - NAT - two gateway -HELP
To: Nima Khoramdin <nima.gooler@gmail.com>
Cc: freebsd-ipfw@freebsd.org


On 1/1/11 5:11 AM, Nima Khoramdin wrote:

> hello .
>
> I installed freebsd 7.1 with ifpw - nat - dummynet with below kernel config
> :
>
> options         IPFIREWALL
> options         IPFIREWALL_VERBOSE
> options         IPFIREWALL_VERBOSE_LIMIT=100
> options         IPFIREWALL_FORWARD
> options         IPDIVERT
> options         DUMMYNET
> options         HZ=1000
>
>
> and i have three NICs , with internal webserver works with nat:
>
> default gw : 172.16.1.5
>
> (in natd.conf :
>
> port 8668
> interface nfe0
> use_sockets yes
>
> # redirect to webserver
> redirect_port tcp 192.168.1.121:80 172.16.1.5:80)
>                                                webserver
> )
>
> it works fine.
>
>
>    ISP1                          ISP2
> wireless connection       ADSL
> 2mb/2mb                 1mb/1mb
> 172.16.1.1/23           10.0.0.1/23
>
>      |                     |
>      |                     |
>      |                     |
>      |                     |
>     static               static
>  172.16.1.5            10.0.1.15
>    *aue0*******************tun0*
>    *          FreeBSD         *
>    *************ep0*************
>
>         192.168.1.254
>                 |
>                 |
>               *****
>            Private LAN
>          192.168.1.0/24
>                  |
>                  |
>                  |
>              webserver
>
>            192.168.1.121
>
>
> how to use of this two gateways for my internal webserver with ipfw&  nat
>
> i want to know how can i use ISP2 adsl as ISP1 ( i mean if anyone put ISP1
> (172.16.1.5) , ISP2 (10.0.10.15) to the browser , can see my internal
> webserver page with two  separated ISPs ) not load balance . i want to use
> two ISPs at the same time .
>
do you REALLY have 172.16.1.5 and 10.0.1.15 as your IP addresses?
If so there is no way you can be reached from the outside..
unless you have made an agreement with the ISPs to forward some address/port
to you.
They are doing NAT on your outgoing sessions as it is already..




 sorry for my bad explanation
> thanx
> _______________________________________________
> freebsd-ipfw@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw
> To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org"
>
>