Site Navigation

Date:      Thu, 07 Aug 2003 11:15:14 +0200
From:      "Roger 'Rocky' Vetterberg" <listsub@401.cx>
To:        Andre Rein <ar@g23.org>
Cc:        freebsd-net@freebsd.org
Subject:   Re: Firewall with RFC1918 transfer network
Message-ID:  <3F3218A2.3040802@401.cx>
In-Reply-To: <20030807094647.X77217@juergen.edv-winter.de>
References:  <20030807094647.X77217@juergen.edv-winter.de>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

Andre Rein wrote:

>Hi,
>
>I set up a Firewall for our official Network and use a RFC1918 conform
>transfer network to communicate to the router.
>
>Here are my interfaces:
>
>fxp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
>  inet 192.168.55.74 netmask 0xfffffffc broadcast 192.168.55.75
>fxp1: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
>  inet 195.226.65.125 netmask 0xffffffc0 broadcast 195.226.65.127
>vr0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
>  inet 10.0.0.126 netmask 0xffffff00 broadcast 10.0.0.255
>
>My routing table:
>
>default            192.168.55.73      UGSc        1   822551   fxp0
>10/24              link#3             UC          2        0    vr0
>10.0.0.65          00:50:ba:fb:dc:13  UHLW        1    42895    vr0    473
>10.0.0.254         00:60:b0:6b:08:f3  UHLW        1     1428    vr0    694
>127.0.0.1          127.0.0.1          UH          0     2904    lo0
>192.168.55.72/30   link#1             UC          3        0   fxp0
>192.168.55.73      00:0c:ce:6c:de:53  UHLW        1        0   fxp0   1023
>192.168.55.74      00:60:b0:67:e8:01  UHLW        0        2    lo0
>192.168.55.75      ff:ff:ff:ff:ff:ff  UHLWb       0        4   fxp0
>195.226.65.64      ff:ff:ff:ff:ff:ff  UHLWb       0       53   fxp1 =>
>195.226.65.64/26   link#2             UC         19        0   fxp1
>195.226.65.65      00:60:97:b8:7f:89  UHLW        0    48419   fxp1   1098
>195.226.65.66      00:60:97:b8:7f:89  UHLW        0      133   fxp1    160
>195.226.65.67      00:60:97:b8:7f:89  UHLW        0        6   fxp1    161
>....
>
>       fxp1 		   fxp0
>|DMZ|--------|Firewall|-------------|Router|-----------|INET|
>                 |
>                 |
>                 |  vr0
>                 |
>                 |
>                 -
>              back network
>                 _
>
>
>Everything works fine from my official network to the outside and from the
>outside to my onet, except the firewall itself.She uses the ip
>192.168.55.74 to communicate to the outside.
>
>Is there any way to tell her that she have to use her oip 195.226.65.125
>from fxp1?
>
>greetings
>
>Andre Rein
>
>  
>
Set your default route to something that is not in the 192.168.x.x range.
The system automatically uses the interface from which it can reach the 
default gateway as its "primary" interface.

--
R
 

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3F3218A2.3040802>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact