From owner-freebsd-net@FreeBSD.ORG Fri Sep 3 11:05:16 2004 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BEF6816A4CE for ; Fri, 3 Sep 2004 11:05:16 +0000 (GMT) Received: from fritz.delphinium.net (pcp487354pcs.howard01.md.comcast.net [68.55.21.183]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9470D43D48 for ; Fri, 3 Sep 2004 11:05:16 +0000 (GMT) (envelope-from rtoren@bronzedragon.net) Message-ID: <41385003.1080904@bronzedragon.net> Date: Fri, 03 Sep 2004 07:05:39 -0400 From: RRrp Toren User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.1) Gecko/20040707 X-Accept-Language: en-us, en MIME-Version: 1.0 To: "Nickolay A. Kritsky" References: <413763C1.90208@bronzedragon.net> <2755213000.20040903102918@star-sw.com> In-Reply-To: <2755213000.20040903102918@star-sw.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit cc: freebsd-net@freebsd.org Subject: Re: 3 NICs - 1 upstream, 2 downstream to same subnet?? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 03 Sep 2004 11:05:16 -0000 Nickolay A. Kritsky wrote: > Hello rip, > > Are you sure that you want only one subnet? In your case two different > subnets on two interfaces IMHO look much better. If you are sure about > one-subnet setup than you should try to set up a bridge(4) between > them two NICs. Bridge in FreeBSD is supporting ipfw filtering, so > you can still complete your security goals. No, I am nor sure. I tried using 11.x.x.x on the xl0, but all routing out of the machine stopped along there somewhere. It may have been the xl drivers that don't seem to play well with multiple copies running. I have the outbound interface NATed, so using a live subnet number shouldn't be a problem. Or maybe just go to one of the other 1918 values. Thanks; I'll give that a try again today. Rip > > Thursday, September 02, 2004, 10:17:37 PM, rip wrote: > > r> Hello All; > r> Here is the puzzle > > r> ?? Is this possible? > r> ?? What sort of ip address should xl0 have. When I gave it a 10.99.0.0 > r> 255.0.0.0 address, the netstat -rn said all 10 traffic was on xl0, whicj > r> was not true. > r> ?? Will the OS route traffic comming in on xl0 (with good ips) throug > r> the stacks to xl1 and then on to xl0 for external traffic. > r> ?? Will this act as a switch (mac specific) or a hub (broadcast mode). >