From owner-freebsd-questions Tue Nov 5 2:38:23 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6808337B401 for ; Tue, 5 Nov 2002 02:38:22 -0800 (PST) Received: from etcom.de (s-setcom-01.sdsl-speedway.de [213.155.74.226]) by mx1.FreeBSD.org (Postfix) with ESMTP id D370843E42 for ; Tue, 5 Nov 2002 02:38:20 -0800 (PST) (envelope-from js@setcom.de) Received: from mistered (mister-ed.setcom [192.168.0.40]) by tesla.setcom.de (8.12.6/8.12.5) with SMTP id gA599VD9068946 for ; Tue, 5 Nov 2002 10:09:31 +0100 (CET) (envelope-from js@setcom.de) From: "Jonas Sonntag" To: Subject: bridging the right way? Date: Tue, 5 Nov 2002 10:09:16 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG hi list i'm looking for a little advice here. i've got a fbsd server conected to the internet via rl0. there are about 30 workstation in 192.168, fbsd does nat for, those are connected via rl1. now, on rl1, behind nat there's also a win2k server in here which should soon get connected to the internet, too (being accessible from the internet). i don't want to plug the win2k server next to the fbsd box into our isp's router. this way i'd had to set up an extra firewall on the win2k box, instead i'd like all connection to and from the internet with the win server to go through my existing ruleset on the fbsd box, leaving the win server on the inside interface rl1. just assiging one of the official ip's to the win box didn't work, so i was doing some reading and found out that bridging seemed to be the way to go. now i wonder: those how-to's say it's not nescessary to assign an ip to both interfaces, but i definitly still need an ip from the 192.168 subnet on the inside interface. just as the win2k box still needs to stay accessible with it's 192.168 adress. so...is it possible this way, or would it be far smarter to plug a third nic into the fbsd box only for bridging ? thanks for any advice best regards jonas To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message