From owner-freebsd-questions@FreeBSD.ORG Tue Oct 27 15:28:17 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B89FD10656A4 for ; Tue, 27 Oct 2009 15:28:17 +0000 (UTC) (envelope-from rwmaillists@googlemail.com) Received: from ey-out-2122.google.com (ey-out-2122.google.com [74.125.78.26]) by mx1.freebsd.org (Postfix) with ESMTP id 457168FC30 for ; Tue, 27 Oct 2009 15:28:16 +0000 (UTC) Received: by ey-out-2122.google.com with SMTP id 9so60775eyd.9 for ; Tue, 27 Oct 2009 08:28:16 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=gamma; h=domainkey-signature:received:received:date:from:to:subject :message-id:in-reply-to:references:x-mailer:mime-version :content-type:content-transfer-encoding; bh=MwtJpQPB8J4RTAsE4DRYru3aqvPdaj4IyrbAxrVdkY4=; b=V2rGtFEUPQVQS4d9cXk+V2tiy9DoXL4A8/oBsQGucpKnM43NVBZLL3p45smZxe+hFW TA6X/4UZk60nkbBrEdLYbi6n0SOBrsdBYDP7y1uTDxGMrNpqN2zJ5LyrUfHlAtJiyUHC 1/B9j6TIq2Yr3TZv0J+Pu88c3tz2dX/srJZ4Y= DomainKey-Signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=gamma; h=date:from:to:subject:message-id:in-reply-to:references:x-mailer :mime-version:content-type:content-transfer-encoding; b=TqwmbS1BgQfRhlOmqPTy+3Utdi6t9T2Q62q8E/DtKzo5u7pQtblTc11rFZB/or2deD VegUVOZ4O8qUM5wsABFPWMF4ZqtkKj7YODN0x8XS9k0eonr4KSSPzVx1MObqot6SFEkL hs8FH0rmgauJ65wV9oVw3Z68qBEOQqKDMY7vI= Received: by 10.210.2.19 with SMTP id 19mr3226197ebb.94.1256657294615; Tue, 27 Oct 2009 08:28:14 -0700 (PDT) Received: from gumby.homeunix.com (bb-87-81-140-128.ukonline.co.uk [87.81.140.128]) by mx.google.com with ESMTPS id 24sm305079eyx.37.2009.10.27.08.28.08 (version=SSLv3 cipher=RC4-MD5); Tue, 27 Oct 2009 08:28:08 -0700 (PDT) Date: Tue, 27 Oct 2009 15:28:06 +0000 From: RW To: freebsd-questions@freebsd.org Message-ID: <20091027152806.21af42f1@gumby.homeunix.com> In-Reply-To: <744998.27248.qm@web30808.mail.mud.yahoo.com> References: <744998.27248.qm@web30808.mail.mud.yahoo.com> X-Mailer: Claws Mail 3.7.2 (GTK+ 2.16.6; i386-portbld-freebsd7.2) Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Subject: Re: PPPoE client+pf+nat X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 27 Oct 2009 15:28:17 -0000 On Tue, 27 Oct 2009 06:51:26 -0700 (PDT) D=E1nielisz L=E1szl=F3 wrote: > Hello, >=20 > I am looking to configure my FreeBSD 8.0 machine for the purpose > specified in the subject. Let's say I have two NICs in my PC: ext_if > (for wan/pppoe connection) and int_if for my LAN. How would you > manage to get work NAT with pf using PPPoE from my ISP; I'd like to > use DHCP on my LAN. PPPoE is documented in the handbook, I'd suggest you set that up first together with a simple pf firewall to secure the system. There are plenty of howtos for PF+NAT+DHCP.=20 I would suggest you also run a DNS cache so dhcp clients can be given a fixed private IP address instead of the ISP servers.=20 FWIW you may not actually need two NICs, if you have a modem/router with multiple ports you may be able to get away with PPPoE and your lan sharing the same NIC (your wan interface being tun0).