Date: Tue, 23 Oct 2001 20:03:51 -0400 From: Barney Wolff <barney@databus.com> To: Kirk Strauser <kirk@strauser.com> Cc: freebsd-net@FreeBSD.ORG Subject: Re: Silly problem has me stumped Message-ID: <20011023200351.A69785@tp.databus.com> In-Reply-To: <871yjunfn5.fsf@pooh.int>; from kirk@strauser.com on Tue, Oct 23, 2001 at 05:41:18PM -0500 References: <871yjunfn5.fsf@pooh.int>
next in thread | previous in thread | raw e-mail | index | archive | help
1. You don't need the public address configured on the same nic as the private - packets to the public address will be accepted even if they come in via the outside nic. 2. Both ping and traceroute offer options to set the source addr. rtfm. On Tue, Oct 23, 2001 at 05:41:18PM -0500, Kirk Strauser wrote: > It's late in the day, my coffee's wearing off, and my brain is fried. > > My new ISP uses private addresses for all internal routing. Let's say that > my new public address block is 1.2.3.0/24, and that the routing block > between their network and mine is 10.0.0.0/30, and my default router is > 10.0.0.1.My FreeBSD 4.4 (STABLE) machine, named gw1 and housing several > Ethernet cards, will be a router and DNS server. Here is the basic network > diagram: > > Internet +--- > || | Their network > 10.0.0.1 - their router +--- > || > || > 10.0.0.2 - gw1 +--- > || | > 1.2.3.0/24 - gw1 | My network > || | > Public servers | > on my LAN +--- > > Because gw1 needs to be world-accessible, I need both the private > (10.0.0.2/30) and public (1.2.3.0/24) configured on the same NIC. While > that's trivial enough, my problem is that all outgoing packets originating > from gw1 have a source address in the private block, which means that I > can't ping out or traceroute past the borders of my ISP's internal routing > system. > > My guess is that the outbound packets get a source address in the private > block because the default route is in that block. Is there a way to get > FreeBSD to use a particular address out of several on an interface as the > source address? > > Please forgive me if I sound like a crack junkie. I've been looking at the > screen too long for one day's work. > -- > Kirk Strauser > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message -- Barney Wolff "Nonetheless, ease and peace had left this people still curiously tough. They were, if it came to it, difficult to daunt or to kill; and they were, perhaps, so unwearyingly fond of good things not least because they could, when put to it, do without them, and could survive rough handling by grief, foe, or weather in a way that astonished those who did not know them well and looked no further than their bellies and their well-fed faces." J.R.R.T. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011023200351.A69785>