Date: Sun, 17 Jan 1999 13:08:29 -0800 (PST) From: Julian Elischer <julian@whistle.com> To: Tim Wolfe <tim@clipper.net> Cc: Lutz Rabing <LutzRab@omc.net>, freebsd-isp@FreeBSD.ORG Subject: Re: Firewall route add / Cisco Message-ID: <Pine.BSF.4.05.9901171306500.307-100000@s204m82.isp.whistle.com> In-Reply-To: <Pine.LNX.4.02.9901171353001.21455-100000@mailhost.clipper.net>
next in thread | previous in thread | raw e-mail | index | archive | help
With some routers you can assign one of the /24 addresses to be both ends of the point-to-point link. the two ends don't really have to have different addresses in general (though that may not be true of the Cisco implementation). On Sun, 17 Jan 1999, Tim Wolfe wrote: > On Sat, 16 Jan 1999, Lutz Rabing wrote: > > > This is not exactly a FreeBSD question. However, we use a FreeBSD firewall > > and have FreeBSD customer servers behind it ... > > The problem is to assign a /24 to a customer server with: > > route add -net 1.2.3.0/24 -interface xl1 > > > > I can't do that because I have to leave one IP address of the /24 on the > > cisco. e.g.: > > customer-server: 62.62.62.2 .. 62.62.62.254 > > cisco : 62.62.62.1 > > > > Does someone know how to alias a /24 to the cisco router without assigning > > an IP to it? I checked the cisco docs, but did not find a clue. > > You have to have some IP connection between the cisco and the FreeBSD > router. (Unless someone smarter than I knows how to make cisco's ip > unnumbered and FreeBSD's equivalent function play nice together.) What you > need to do is assign a /30 (4 IPs, 1 network address, 1 broadcast and 2 > usable IPs one each for the cisco, say 192.168.1.1, and the FreeBSD box, > 192.168.1.2) to connect them > together. If you do not have enough real IPs, you can use private RFC1918 > space (ie, 192.168.1.0/30) to connect the two routers. Then simply add a > route on your cisco like: > > conf term > ip route 1.2.3.0 255.255.255.0 192.168.1.2 > > Hope this helps, > > Tim > > ---------------------------------------------------- > Timothy M. Wolfe | Why surf when you can Sail? > tim@clipper.net | Join Oregon's Premier > Sr. Network Engineer | Wireless Internet Provider! > ClipperNet Corporation | http://www.clipper.net/ > ---------------------------------------------------- > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.05.9901171306500.307-100000>