From owner-freebsd-net@FreeBSD.ORG Tue Jun 21 13:57:31 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4D15816A41C for ; Tue, 21 Jun 2005 13:57:31 +0000 (GMT) (envelope-from wagnerrp@email.uc.edu) Received: from mprelay.uc.edu (mprelay.uc.edu [129.137.3.48]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1070443D1D for ; Tue, 21 Jun 2005 13:57:30 +0000 (GMT) (envelope-from wagnerrp@email.uc.edu) Received: from mirapoint.uc.edu (mirapoint.uc.edu [10.23.4.254]) by mprelay.uc.edu (MOS 3.5.8-GR) with ESMTP id DGA48167; Tue, 21 Jun 2005 09:57:29 -0400 (EDT) Received: from raymond (raymond.erc-wireless.uc.edu [172.30.10.190]) by mirapoint.uc.edu (MOS 3.4.7-GR) with ESMTP id CMK21282; Tue, 21 Jun 2005 09:57:28 -0400 (EDT) Message-Id: <200506211357.CMK21282@mirapoint.uc.edu> From: "Raymond Wagner" To: Date: Tue, 21 Jun 2005 09:57:25 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook, Build 11.0.5510 Thread-Index: AcV2aSdY272oYpj+Tl23jp7MimUiZA== X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 Subject: FreeBSD based frewall on ADSL link with /29 subnet X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 21 Jun 2005 13:57:31 -0000 For a number of years, I have had an ADSL connection using a Cisco 675 modem in NAT mode. My ISP gives me a /29 subnet, which results in 6 available external addresses. Since the modem was running NAT, I could only use the public address attached to the modem. A few weeks ago, I switched over to a FreeBSD based router and decided to make use of those extra addresses. I added another 4 aliases to my external interface and set natd to redirect two of my inside machines onto two of the available addresses. I restarted ipfw and everything works great. Now the problem. I use www.dyndns.org to keep track of my public IPs and I use ddclient on the firewall to automatically update them if needed. I can only locally see 10.xxx address space internal addresses that my ISP assigns, so I have to use checkip.dyndns.org to figure out what my public IP is. The addresses are randomly dynamically assigned from one of 5 class B subnets, so I can't just count up from the first address. I can run dyndns clients on the two internal machines, but I would rather keep all network related activities contained on the firewall. ddclient still works fine on the firewall, but it can only update the primary address. How do I get ddclient (or some perl script or other program capable of parsing a website) to access the internet through one of the aliased addresses, rather than through the main address? Thanks, Raymond Wagner