Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 4 Dec 1997 01:22:39 -0800 (PST)
From:      "Jamil J. Weatherbee" <jamil@trojanhorse.ml.org>
To:        hackers@freebsd.org
Subject:   I seriously need some networking help
Message-ID:  <Pine.BSF.3.96.971204010641.385B-100000@trojanhorse.ml.org>
next in thread | raw e-mail | index | archive | help 

Here is a diagram of what I want to do (if this is possible):
I have not been able to get this configured: 

The ip addresses have been altered to protect innocent networks of
unprotected wincrap 95 machines.


service provider ------\
			|
		        |
                Ascend Pipeline 50 
                 123.123.62.161/27 (router0)
                        |
                        |  <----- crossover cable
                      (ed1)
                FreeBSD Firewall 
                 123.123.62.162/27 (core)---(ppp0)------modem(remote user)
                      (ed0)				       proxied to	
                        |					ethernet	
                        |
                        |
                Windoze ethernet 123.123.62.161-190/27


My major problem is I have 30 ip addresses being used on the windoze
ethernet, I want to seamlessly stick a freebsd box between the pipeline 50
and the windoze ethernet (it would usually sit directly on the ethernet)
to do some ip accounting/firewalling etc., it is
possible for ed0 to have a different ip address than ed1 but router0 must
believe that it is on the windoze ethernet and the windoze ethernet must
believe  that router0 is local to it.  It is really as if the freebsd is
acting as a bridge, but doing packet filtering?  But how do I ifconfig the
interfaces?  running ifconfig with the same parameters for ed0 and ed1
gives an error (file already exists) but does seem to configure them,
however routing doesn't work to the second one.

I have a working ppp dialup to the machine where I use the alias option to
pppd this creates and arp entry for that ip address (which an ip address
on the windoze network subnet) and routes packets through the freebsd
machine from the ethernet to the remote user, exactly as if the user was
on the local ethernet.  I could there conceivably filter packets going
between ed0 and ppp0, and this all works fine and dandy.  Essentially what
I want is the equivalent with but with a crossover cable to the pipeline
50.  Lots of people have made suggestions, but I know that there is
someone out there who has either done this or knows that it is impossible
--- please help me, thanks.

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.971204010641.385B-100000>