Date: Thu, 18 Jan 1996 19:00:25 -0500 (EST) From: Chael Hall <nowhere@chaos.taylored.com> To: questions@freebsd.org Subject: Gateway/gated questions Message-ID: <Pine.BSF.3.91.960118185250.2913B-100000@chaos.taylored.com>
next in thread | raw e-mail | index | archive | help
I have decided to separate the Internet traffic from the NetWare traffic
on our network. So, I took the FreeBSD machines and the router and
created a small thin Ethernet network for just them. I added a second
SMC Ultra to one of the machines (running 2.1.0) and configured it. I'm
running bootpd on the "gateway" machine and the clients can find it and
configure off of it. They can telnet to it, etc. and I can do anything I
want from the gateway machine itself, but nobody can get across the
gateway to the other side. I.e., a client on our internal network can't
access a server somewhere on the Internet.
My routed flags are '-s', I can't seem to figure out what is supposed to
go in the configuration file for GateD, so I haven't tried it yet. Here
is a netstat -r:
Routing tables
Internet:
Destination Gateway Flags Refs Use Netif Expire
default gateway UGSc 402 3018 ed0
localhost.taylor localhost.taylored UH 1 17 lo0
206.53.224 link#1 UC 3 0
gateway 0:0:a2:b:5d:67 UHLW 405 0 ed0 1041
taylored.com 0:0:c0:91:a5:8d UHLW 6 14970 ed0 547
test26 gateway UGHS 0 0 ed0
test27 gateway UGHS 0 0 ed0
chaos localhost.taylored UGHS 1 30 lo0
206.53.224.32 link#2 UC 0 0
kirk.pc.taylored 0:0:6e:21:b:c7 UHLS 1 4 ed1 120
yoshi.pc.taylore link#2 UHLW 1 303
kaos 0:0:c0:c:64:4b UHLW 0 2 lo0
206.53.224.63 link#2 UHLW 0 1
206.53.224.255 link#1 UHLW 1 28
BASE-ADDRESS.MCA link#1 UCS 0 0
I compiled the kernel with "options GATEWAY" and it also has the IPFW
stuff in it, but I'm not using it at the moment. I hard-coded some stuff
in /etc/sysconfig:
network_interfaces="ed0 ed1 lo0"
ifconfig_ed0="inet 206.53.224.28 netmask 255.255.255.0"
ifconfig_ed1="inet 206.53.224.58 netmask 255.255.255.224"
ifconfig_lo0="inet localhost"
static_routes="multicast loopback"
route_multicast="224.0.0.0 -netmask 0xf0000000 -interface ${hostname}"
route_loopback="${hostname} localhost"
defaultrouter="206.53.224.1"
routedflags="-s"
gateway=YES
gated=NO
In this situation, 206.53.224.28 (ed0) is on the Internet and
206.53.224.58 (ed1) is on the internal network. 206.53.224.[33-62] are
internal IP addresses, 206.53.224.1 is our router.
Chael
--
Chael Hall, nowhere@chaos.taylored.com, nowhere@iquest.net
http://chaos.taylored.com/home/nowhere/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.91.960118185250.2913B-100000>