Date: Mon, 18 May 1998 14:35:19 -0700 (PDT) From: Doug White <dwhite@gdi.uoregon.edu> To: MIKE JENKINS <jenkins.mike@epamail.epa.gov> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Stealth Firewall Message-ID: <Pine.BSF.3.96.980518143428.9951X-100000@gdi.uoregon.edu> In-Reply-To: <s55c5fc1.050@wpmail.gbr.epa.gov>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 15 May 1998, MIKE JENKINS wrote: > Is it possible to slip a FreeBSD box between a router and a LAN > to provide IP filtering and not change any IP addresses/netmasks? > In other words, change this: > > (Internet) ----- |Router| -----LAN----- > 200.1.2.0/24 > > to this: > > (Internet) ----- |Router| -----LAN----- |FreeBSD| -----LAN----- > 200.1.2.0/24 200.1.2.0/24 > > FreeBSD will have to either bridge or do proxyarp to help hosts on either > side reach hosts on the other side. No, it'll have to bridge, which it doesn't. FreeBSD don't let you do this anyway, since you'll have two MACs on the same "net" and the routing Just Won't Work. Doug White | University of Oregon Internet: dwhite@resnet.uoregon.edu | Residence Networking Assistant http://gladstone.uoregon.edu/~dwhite | Computer Science Major To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980518143428.9951X-100000>