From owner-freebsd-questions Tue Apr 10 7:23: 5 2001 Delivered-To: freebsd-questions@freebsd.org Received: from switch01.switch.no (c13048.catch.sdsl.no [217.8.130.48]) by hub.freebsd.org (Postfix) with ESMTP id 91A8D37B423 for ; Tue, 10 Apr 2001 07:23:01 -0700 (PDT) (envelope-from ros@switch.no) Received: by switch01.switch.no with Internet Mail Service (5.5.2650.21) id ; Tue, 10 Apr 2001 16:15:37 +0200 Message-ID: From: Roger Svenning To: "'freebsd-questions@freebsd.org'" Subject: routed, natd & ipfirewall [config help needed] Date: Tue, 10 Apr 2001 16:15:28 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi I've been running a box with natd & ipfw for connecting our local network to the internet and it works just fine. Now I want to set up a DMZ zone for servers that should be connected directly to the net without NAT I've added a third network card and enabled routed, but .. taadaa .. it doesn't work quite as expected :-) The DMZ zone can be reached from the gateway itself and the internal network, but not from the internet. The routing from xl2 to xl0 trough natd works just fine. Can any1 give me some advice on how to set this configuration up ? Here's the network layout: 217.8.129.70 (ISP gateway) | -> 217.8.129.69 (xl2 interface)(255.255.255.252) | -> 217.8.130.62 (xl1 interface)(255.255.255.224) -> DMZ zone | -> 10.0.1.1 (xl0 interface)(255.255.255.0) -> Local network Roger O. Svenning To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message