From owner-freebsd-ipfw@FreeBSD.ORG Thu Mar 19 07:13:53 2009 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9BA281065672 for ; Thu, 19 Mar 2009 07:13:53 +0000 (UTC) (envelope-from linzhao@ustc.edu.cn) Received: from ustc.edu.cn (smtp.ustc.edu.cn [202.38.64.16]) by mx1.freebsd.org (Postfix) with SMTP id 855F98FC16 for ; Thu, 19 Mar 2009 07:13:50 +0000 (UTC) (envelope-from linzhao@ustc.edu.cn) Received: (eyou send program); Thu, 19 Mar 2009 15:14:49 +0800 Message-ID: <437446889.08051@ustc.edu.cn> Received: from 202.38.70.144 by email.ustc.edu.cn with HTTP; Thu, 19 Mar 2009 15:14:49 +0800 X-WebMAIL-MUA: [202.38.70.144] From: "Lin Zhao" To: lists@jnielsen.net, freebsd-ipfw@freebsd.org Date: Thu, 19 Mar 2009 15:14:49 +0800 X-Priority: 3 Content-Type: text/plain Cc: Subject: Re: pls help on 3 interfaces X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Lin Zhao List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 19 Mar 2009 07:13:53 -0000 too much thx for Julian Elischer & John Nielsen..... i've tried it, and it seems working now, but i don't know if i'm right in setting natd2.... i just add one line in /etc/services as "natd2 8669" and run a command: natd -n fxp1 -p 8669 seems so stupid Lin 在您的来信中曾经提到: >From: John Nielsen >Reply-To: >To: freebsd-ipfw@freebsd.org, Lin Zhao >Subject: Re: pls help on 3 interfaces >Date:Wed, 18 Mar 2009 23:23:56 -0400 > >On Wednesday 18 March 2009 10:36:15 pm Lin Zhao wrote: > > hi all, wish my english is enough :-) > > my freebsd has 3 interfaces, like this, > > > > ---- ----switch1 > > > > | ---------- fxp0 | > > | > > | | |--------- > > > > internal |--------|freebsd71 | > > > > | rl0 | |--------- > > | ---------- fxp1 | > > > > ---- ----switch2 > > > > we're in the internal and want to visit outside > > we use fxp0 for default outside address and it works well > > but for some reason, i want to use fxp1 for some special outside > > address how can i do for it? > > thanks a lot. > > Is the FreeBSD box performing network address translation (NAT)? I'm going > to assume that it is and everything is being aliased through fxp0. I'm > also assuming you're using ipfw since you wrote to the ipfw list. > > If the IP addresses which you'd like to reach via fxp1 are static, you > should be able to do something like the following: > > Configure static routes on the FreeBSD machine for the the special outside > addresses using the gateway of fxp1's network as the router. > Configure an additional NAT rule (if still using natd now might be a good > time to switch to in-kernel ipfw NAT..) to alias through fxp1. > Configure ipfw to direct traffic to/from the special outside addresses to > the new NAT instance instead of the default. > > I actually used a similar setup recently. If you care to confirm my > assumptions above I can give you a more step-by-step guide. > > JN > > _______________________________________________ > freebsd-ipfw@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw > To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org" >