Date: Sat, 1 May 2004 02:03:17 -0700 From: "Mitch (bitblock)" <mitch@bitblock.com> To: "Artyom V. Viklenko" <artem@mipk.kharkiv.edu> Cc: freebsd-net@freebsd.org Subject: RE: Routing and VPN troubles... Message-ID: <JFEFJAFJPNHFPLKLGIHEAEGHDNAA.mitch@bitblock.com> In-Reply-To: <409351D8.8060603@mipk.kharkiv.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
> -----Original Message----- > From: Artyom V. Viklenko [mailto:artem@mipk.kharkiv.edu] > Sent: Saturday, May 01, 2004 12:29 AM > To: Mitch (bitblock) > Cc: freebsd-net@freebsd.org; freebsd-isp@freebsd.org > Subject: Re: Routing and VPN troubles... > > > Mitch (bitblock) wrote: > > The crux of my problem, is that I need to configure a VPN network in a > > star - one central node, many outside nodes... easy right? > > First of all, is it really a VPN network? > How you connect your ADSL links to FBSD 4? > > And second, if FBSD4 is only point which handle > ALL traffic between FBSD1-3 and their clients, you can > use ipfw to block unwanted traffic. > For example, if your ADSL links connected to VLAN-avare > switch, and each ADSL link paired to FBSD4 in the separate VLAN, > you can set up different interfaces vlan0-vlanx > for each one and use these interfaces in ipfw rules. Thanks Artyom... The PC's behind FBSD1-3 are on private network addresses. The ADSL infrastructure and ATM paths will only route the assigned public address to the router FBSD4. There is no VLAN-aware switch, it's just the way that the ATM paths are configured that made it a close analogy (so I thought). The VPN stuff might be easy if I could figure out how to make FBSD1-3 route through FBSD4 (regardless of the fact that they are all on the same subnet... the traffic from FBSD1 needs to "bounce" off FBSD4 on it's way to FBSD3 for example... either that, or maybe the gif interfaces count as distinct interfaces for routing? m/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?JFEFJAFJPNHFPLKLGIHEAEGHDNAA.mitch>