From owner-freebsd-questions Fri May 16 11:16:25 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA11892 for questions-outgoing; Fri, 16 May 1997 11:16:25 -0700 (PDT) Received: from vdp01.vailsystems.com (root@vdp01.vailsystems.com [207.152.98.18]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA11884 for ; Fri, 16 May 1997 11:16:21 -0700 (PDT) Received: from crocodile.vale.com (crocodile [192.168.128.47]) by vdp01.vailsystems.com (8.8.3/8.7.3) with ESMTP id NAA11821; Fri, 16 May 1997 13:16:08 -0500 (CDT) Received: from jaguar.vale.com (jaguar.vale.com [192.168.129.46]) by crocodile.vale.com (8.8.3/8.7.3) with SMTP id NAA26398; Fri, 16 May 1997 13:16:08 -0500 (CDT) From: hal@vailsys.com (Hal Snyder) To: Shawn Klomparens Cc: questions@freebsd.org Subject: Re: FreeBSD as a router Date: Fri, 16 May 1997 18:16:10 GMT Organization: Vail Systems Message-ID: <337f9fed.1225739059@w3> References: <3.0.1.32.19970517112702.006a5274@mail.sisna.com> In-Reply-To: <3.0.1.32.19970517112702.006a5274@mail.sisna.com> X-Mailer: Forte Agent 1.0/32.390 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id LAA11888 Sender: owner-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Sat, 17 May 1997 11:27:02 -0600, klomp@sisna.com wrote: >I was just looking through the FreeBSD mailing list archives, and I found >your message regarding FBSD as a dedicated router. Can you suggest any >documents or sources which might address this solution in more detail? There's not a lot I can tell you. Say "yes" to gateway in /etc/sysconfig. Use ipfw or ipfirewall to filter out unwanted traffic. Use bpf (=bpfilter) if you want to use tcpdump. I have used this approach at two commercial sites. FreeBSD runs 24x7, uptimes limited only by scheduled reboots. Tcpdump eliminates the need for a separate sniffer. Do you want to route across LAN's only, or talk to a wide area link? If you want to connect to a T1 or frame relay link, you can use an Emerging Technologies HDLC card with (one or two ports per card) and your FreeBSD system as good as a Cisco - better if you think in Unix. Adding an interface is as easy as inserting a network card in the PC (or switching in a double card for a single). I'd try scanning/emailing questions@freebsd.org for the latest on WAN cards. (I'm copying this message there.)