Date: Wed, 10 Dec 1997 19:01:38 -0700 (MST) From: Marc Slemko <marcs@znep.com> To: Joerg Wunsch <joerg_wunsch@uriah.heep.sax.de> Cc: freebsd-hackers@freebsd.org Subject: Re: I seriously need some networking help Message-ID: <Pine.BSF.3.95.971210190020.1361E-100000@alive.znep.com> In-Reply-To: <199712110048.BAA09610@uriah.heep.sax.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 11 Dec 1997, J Wunsch wrote: > "J. Weatherbee - Senior Systems Architect" <jamil@acroal.com> wrote: > > > I attempted making the firewall to router link a 192.168.x.x network, and > > using dual ip on it, unfortunately it interesting that the link gets > > published by traceroute for instance from the outside world. > > Sure, but that's only a cosmetical problem. I've seen 10.* > intermediate network addressess even on major Internet relays when > tracerouting. It should be totally acceptable for an endpoint > transient network. Nobody has any need to access the interfaces on > this network. So tell me what happens when the box that interface is on needs to send an ICMP message like can't fragment? What IP does it use? If it uses the private one, you lose. This does break things like PMTU-D.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.95.971210190020.1361E-100000>