Date: Wed, 30 Sep 1998 22:39:53 -0500 From: "Jeffrey J. Mountin" <jeff-ml@mountin.net> To: Archie Cobbs <archie@whistle.com> Cc: freebsd-isp@FreeBSD.ORG Subject: Re: IPFW, Dual network cards Message-ID: <3.0.3.32.19980930223953.007890e4@207.227.119.2> In-Reply-To: <199809301640.JAA26226@bubba.whistle.com> References: <3612702d.118121810@smtp.shellnet.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
At 09:40 AM 9/30/98 -0700, Archie Cobbs wrote: >Steven Fletcher writes: >> We've been running a combination of IPFW, NATD and IPLTD for some time >> now - very successfully I might add - at controlling bandwidth and >> using IP translation for our internal computers. >> >> However we're attempting to make this a little more secure (as >> changing IP and gateway is a bit easy :>) and would like to know if >> possible the following: >> >> 1) Will FreeBSD (3.0-19980804-SNAP) allow us to physically separate >> the network by placing 2 network cards in the machine and connecting >> one to each of our switches? Do I need anything such as routed to be >> running? > >Are you talking about bridging or routing? If the former, yes but >with some work (ie, kernel patches). If the latter, just edit rc.conf >to enable IP forwarding and set up your routes. You don't need routed. Could you clarify what you mean by "IP forwarding" in rc.conf, which is a bit unclear. Don't gateway_enable=YES and natd (et all) handle this? I've found routed next to useless. >> 2) If so, can this network setup route other protocols - i.e Windows >> NetBEUI traffic or IPX setup? (I'm really looking for a 'no' answer >> here - if yes can it be stopped?) > >FreeBSD doesn't do that stuff.. it has some vestigial code in the >kernel but nobody uses it and it's disabled by default. But doesn't stop NetBEUI over TCP/IP, does it? This aspect, among others, is rather annoying in dealing with Windoze, as I pointed out privately. Jeff Mountin - Unix Systems TCP/IP networking jeff@mountin.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.3.32.19980930223953.007890e4>