From owner-freebsd-net@FreeBSD.ORG  Tue Aug  9 13:46:38 2011
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id A79EE1065673
	for <freebsd-net@freebsd.org>; Tue,  9 Aug 2011 13:46:38 +0000 (UTC)
	(envelope-from marek_sal@wp.pl)
Received: from mx3.wp.pl (mx3.wp.pl [212.77.101.7])
	by mx1.freebsd.org (Postfix) with ESMTP id 21D5F8FC13
	for <freebsd-net@freebsd.org>; Tue,  9 Aug 2011 13:46:37 +0000 (UTC)
Received: (wp-smtpd smtp.wp.pl 11994 invoked from network);
	9 Aug 2011 15:46:27 +0200
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=wp.pl; s=1024a;
	t=1312897587; bh=tfiAwBPZxRkbUI4al+NPHGpo7ZsFSLRbrNU+zpZbp2E=;
	h=From:To:CC:Subject;
	b=eoxkg27gkCdpmIFA9cVn83aSrmvUdisdFnq9tMfWCkoWCel/IEkMp/8p5J+2S/u/k
	uv0WF1y8GnJeawdHndiPHBHE1q9GxYwTt9hiNCRqhECXlBhUW9NLFDBmTbHQP0Vk4w
	JOgQRaPD7g0Z/ShNFtHtXNPdMEqiNciCRylnPrN0=
Received: from cwx170.internetdsl.tpnet.pl (HELO [10.0.0.15])
	(marek_sal@[83.19.131.170]) (envelope-sender <marek_sal@wp.pl>)
	by smtp.wp.pl (WP-SMTPD) with SMTP
	for <cswiger@mac.com>; 9 Aug 2011 15:46:27 +0200
Message-ID: <4E4139EB.7060904@wp.pl>
Date: Tue, 09 Aug 2011 15:45:15 +0200
From: Marek Salwerowicz <marek_sal@wp.pl>
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:5.0) Gecko/20110624 Thunderbird/5.0
MIME-Version: 1.0
To: Chuck Swiger <cswiger@mac.com>
References: <4E412093.8000105@wp.pl>
	<A7D49BE7-7822-49BB-91B9-B8EDF09090CA@mac.com>
	<4E4132D5.8020700@wp.pl>
	<502BD41A-AF5F-43D7-AB34-0CDEA1F57D4B@mac.com>
In-Reply-To: <502BD41A-AF5F-43D7-AB34-0CDEA1F57D4B@mac.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-WP-AV: skaner antywirusowy poczty Wirtualnej Polski S. A.
X-WP-SPAM: NO 0000000 [McO0]                               
Cc: freebsd-net@freebsd.org
Subject: Re: ipfw - accessing  DMZ from LAN
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Aug 2011 13:46:38 -0000

W dniu 2011-08-09 15:26, Chuck Swiger pisze:
> dummynet (or Altq, or whatever else you might be using) works fine with pure routing config, yes-- you don't have to NAT traffic to do bandwidth control on the router.
>
How it should be done?
Leave the aliases at my external interface, and then 'bridge' DMZ 
interface with external and set up public IPs on my DMZ hosts?

Regards,
-- 
Marek Salwerowicz