From owner-freebsd-questions@FreeBSD.ORG Sat Jan 3 12:27:40 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 997E016A4CE for ; Sat, 3 Jan 2004 12:27:40 -0800 (PST) Received: from lakemtao03.cox.net (lakemtao03.cox.net [68.1.17.242]) by mx1.FreeBSD.org (Postfix) with ESMTP id E154143D5A for ; Sat, 3 Jan 2004 12:27:37 -0800 (PST) (envelope-from srenna@vdbmusic.com) Received: from mars ([68.100.162.26]) by lakemtao03.cox.net (InterMail vM.5.01.06.05 201-253-122-130-105-20030824) with ESMTP id <20040103202738.KIPE2192.lakemtao03.cox.net@mars>; Sat, 3 Jan 2004 15:27:38 -0500 From: "Scott Renna" To: "'Andrew Boothman'" Date: Sat, 3 Jan 2004 15:27:33 -0500 Message-ID: <000201c3d238$070d2790$0201a8c0@mars> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.4024 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Importance: Normal In-Reply-To: <3FF6FB80.2080807@cream.org> cc: freebsd-questions@freebsd.org Subject: RE: problem with 2 nics in same box X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 03 Jan 2004 20:27:40 -0000 I am using Snort and a few other tools to decide which I'd like best. Here's the thing about Lowell's comment on Bridging. Is this necessary in this case? I don't want the interface without an IP to EVER transmit outbound. If I Need to enable bridging I'll do so. The other thing is, is it possible to configure each card to be on a different subnet(like xl1 on 10.X.X.X and xl0 on 192.X.X.X)? Bpf is in the kernel Andrew, do you like VooDoo Blue? Let me know, I am involved. -----Original Message----- From: Andrew Boothman [mailto:andrew@cream.org] Sent: Saturday, January 03, 2004 12:27 PM To: Scott Renna Cc: freebsd-questions@freebsd.org Subject: Re: problem with 2 nics in same box Scott Renna wrote: > Hello List, > > I am having some difficulty in getting my xl0 and xl1 3com cards to work > the way I'd like. I'm running 5.1 Release and I'm basically trying to > have one interface with no IP address(specifying it as such in > /etc/rc.conf as ifconfig_xl1="up") And I'd like to have the other(xl0) > to have an IP address of my Internal Network. The purpose of this setup > is to sniff traffic with the interface that has no IP address and allow > for management and reporting over the interface that has an IP > associated with the Internal network. > > For some reason, this is just not working for me at all. I've tried to > configure via rc.conf and this fails to work. I've also tried assigning > an RFC 1918 address to the interface I want sniffing as this traffic > should not be routable, but it doesn't seem to work. What software are you using to sniff the traffic? Do you have the bpf device in your kernel? Do you get an error message or just no traffic recieved? Andrew P.S. Are you something to do with VooDoo Blue or do you just do their web site, or just a fan or something? :)