Date: Sat, 6 Apr 2002 21:13:25 -0800 From: "Crist J. Clark" <cjc@FreeBSD.ORG> To: wsmuir@islandnet.com Cc: freebsd-net@FreeBSD.ORG Subject: Re: one machine, 2 external nics Message-ID: <20020406211325.F70207@blossom.cjclark.org> In-Reply-To: <020405093517@islandnet.com>; from wsmuir@islandnet.com on Fri, Apr 05, 2002 at 09:35:17AM -0800 References: <020405093517@islandnet.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Apr 05, 2002 at 09:35:17AM -0800, wsmuir@islandnet.com wrote:
> Hi all...
>
> I'd really appreciate a hint or two on this.
>
> I'm having problems deciding on the 'best way' for this one...
>
> I have a freebsd 4.2 firewall machine built and have it plugged into
> both a dsl modem with static ips and a cable modem with static ips...
>
> what I am trying to do is have the machine respond to the outside
> like it was 2 separate machines.
>
> for instance i want to be able to connect to sshd on either external
> ip and have it respond.
> my understanding is that it won't do this because the 2nd nic doesn't
> know how to route beyond its own subnet.
>
> this is to solve a bigger problem for which there are other
> solutions, but I would like to know how to do this one
> specifically... thank you
Are you doing natd(8)? If so, it is pretty easy to do. natd(8) will
end up tracking which interface the packet came in for you. You can
use the information in natd(8), when it translates the source address
on outgoing packets, to "route" packets to a next-hop (one gateway or
another) using a 'fwd' rule. There still are some tricks to doing
this, but it's quite doable.
--
Crist J. Clark | cjclark@alum.mit.edu
| cjclark@jhu.edu
http://people.freebsd.org/~cjc/ | cjc@freebsd.org
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020406211325.F70207>