From owner-freebsd-net@FreeBSD.ORG Mon Aug 16 02:40:14 2010 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C26841065693 for ; Mon, 16 Aug 2010 02:40:14 +0000 (UTC) (envelope-from satellites@inorbit.com) Received: from imr-ma05.mx.aol.com (imr-ma05.mx.aol.com [64.12.100.31]) by mx1.freebsd.org (Postfix) with ESMTP id 7F7618FC15 for ; Mon, 16 Aug 2010 02:40:14 +0000 (UTC) Received: from imo-da03.mx.aol.com (imo-da03.mx.aol.com [205.188.169.201]) by imr-ma05.mx.aol.com (8.14.1/8.14.1) with ESMTP id o7G2e5sm023284 for ; Sun, 15 Aug 2010 22:40:05 -0400 Received: from satellites@inorbit.com by imo-da03.mx.aol.com (mail_out_v42.9.) id n.c15.5c95e1c9 (37073) for ; Sun, 15 Aug 2010 22:40:01 -0400 (EDT) Received: from smtprly-db03.mx.aol.com (smtprly-db03.mx.aol.com [205.188.249.154]) by cia-db05.mx.aol.com (v129.4) with ESMTP id MAILCIADB057-5c3c4c68a4fe9e; Sun, 15 Aug 2010 22:40:01 -0400 Received: from web-mmc-m06 (web-mmc-m06.sim.aol.com [64.12.224.139]) by smtprly-db03.mx.aol.com (v129.4) with ESMTP id MAILSMTPRLYDB032-5c3c4c68a4fe9e; Sun, 15 Aug 2010 22:39:58 -0400 To: freebsd-net@freebsd.org Date: Sun, 15 Aug 2010 22:39:58 -0400 X-MB-Message-Source: WebUI X-AOL-IP: 24.15.48.3 X-MB-Message-Type: User MIME-Version: 1.0 From: satellites@inorbit.com X-Mailer: Mail.com Webmail 32447-STANDARD Received: from 24.15.48.3 by web-mmc-m06.sysops.aol.com (64.12.224.139) with HTTP (WebMailUI); Sun, 15 Aug 2010 22:39:58 -0400 Message-Id: <8CD0B0373A10247-12C8-1135B@web-mmc-m06.sysops.aol.com> X-Spam-Flag: NO X-AOL-SENDER: satellites@inorbit.com Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Recommended Sequence to Set Up Router/Firewall Appliance and Bind DNS Server? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 16 Aug 2010 02:40:14 -0000 Hello List, I wonder if someone might be able to point me in the right direction: I have two interfaces on a New 7.3 FreeBSD Installation that I would like= to use on two different subnets.? In other words, I would like the machin= e to function as a router.? I do have the gateway_enable option present in= rc.conf however neither of the two interfaces are presently set up. ? If= I am setting up the machine to function as a router, is it bad practice= to also set it up as a DNS Server? I am also working through a couple of books on PF, which I'd like to use= with this router appliance. Being that PF has NAT capabilities and redirection options, is it correct= to set up bind first, then the persistent routes in rc.conf, then the fir= ewall?? Am I confusing the issue??