From owner-freebsd-isp Wed May 16 0:24:43 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mail1.rdc2.bc.home.com (mail1.rdc2.bc.home.com [24.2.10.84]) by hub.freebsd.org (Postfix) with ESMTP id 0F07B37B422 for ; Wed, 16 May 2001 00:24:40 -0700 (PDT) (envelope-from brent@justbrent.net) Received: from cr565151-a.vc.shawcable.net ([24.76.109.116]) by mail1.rdc2.bc.home.com (InterMail vM.4.01.03.20 201-229-121-120-20010223) with SMTP id <20010516072439.LDMD24212.mail1.rdc2.bc.home.com@cr565151-a.vc.shawcable.net> for ; Wed, 16 May 2001 00:24:39 -0700 From: Brent Rector Date: Wed, 16 May 2001 07:28:02 GMT Message-ID: <20010516.7280269@cr565151-a.vc.shawcable.net> Subject: Routing, IPFW, and/or Bridging??? To: freebsd-isp@freebsd.org X-Mailer: Mozilla/3.0 (compatible; StarOffice/5.2;Win32) X-Priority: 3 (Normal) MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Good Day Everyone! I have been reading and reading, and still am a little confused on what = path I should take. I am the admin for a couple of smallish ISP's. We are currently running = approximately 7 servers of various FreeBSD releases. We have 2 different= =20 blocks of 32 IP's on two different subnets 209.17.xxx.xxx and=20 216.18.10.xxx. Through one upstream provider... What I would like to do is setup another box running BSD to act as a=20= router/firewall kind of setup, and put all the machines on the protected= =20 side. 1. Can I somehow route both blocks of IP's through one machine? (2=20 different NIC cards installed). And still be able to use the public IPS = on the inside... Web, Mail, DNS, SSL etc.... 2. Can we still use the (public) IP's we have already setup on the=20 servers we are presently using? Or do I need to do some translation? 3. What setup would you recommend? Ipfw/natd? Bridge/ipfw? Or perhaps=20= some other combination.... Any help would be appreciated.... Brent Rector To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message