From owner-freebsd-pf@FreeBSD.ORG Sat Nov 26 23:01:13 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E5E04106566C for ; Sat, 26 Nov 2011 23:01:13 +0000 (UTC) (envelope-from mostafafaridi@gmail.com) Received: from mail-vw0-f54.google.com (mail-vw0-f54.google.com [209.85.212.54]) by mx1.freebsd.org (Postfix) with ESMTP id 9DFBE8FC12 for ; Sat, 26 Nov 2011 23:01:13 +0000 (UTC) Received: by vbbfr13 with SMTP id fr13so37520vbb.13 for ; Sat, 26 Nov 2011 15:01:13 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject :content-type:content-transfer-encoding; bh=MJHTMIut0A6GgHxJdpMEJhg4eEKYaIOa1vmd9EJT3KQ=; b=b7nI/VbSomcwpeNOaE0jUV71JHK5LyGo+dC04d/FfR0mF7ixC7SMuxE0+wUkKhheIi Ym5I4AZTjQki73LNLJCKFColIaA1TWnIViwu2VZgvEV+AIXUDBGv7FfGLd3+3dtJbTQG JutnlnFskn4/5cqSjHG2SvSqe5TTTZcNcHuQM= Received: by 10.52.72.227 with SMTP id g3mr38527759vdv.10.1322346886178; Sat, 26 Nov 2011 14:34:46 -0800 (PST) Received: from [192.168.1.101] ([31.57.109.213]) by mx.google.com with ESMTPS id c7sm41122291vdh.12.2011.11.26.14.34.42 (version=TLSv1/SSLv3 cipher=OTHER); Sat, 26 Nov 2011 14:34:45 -0800 (PST) Message-ID: <4ED19ADF.90409@gmail.com> Date: Sun, 27 Nov 2011 05:35:19 +0330 From: Gholam Mostafa Faridi User-Agent: Mozilla/5.0 (X11; Linux i686; rv:8.0) Gecko/20111108 Thunderbird/8.0 MIME-Version: 1.0 To: freebsd-pf@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Mailman-Approved-At: Sun, 27 Nov 2011 01:40:00 +0000 Subject: one ADSL connection with 10 static IPs and PF X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 26 Nov 2011 23:01:14 -0000 we had Leased line before and we had 27 static IPs before , but our ISP do not support is very well , and we change our ISP and we buy ADSL connection with 10 static IPs , my NAT Server is OpenBSD 5 , and I will change it FreeBSD 8.2 . Can I do this with FreeBSD 8.2 and PF ? Do I have to add some options in Kernel or no ? before we change our connection type from Leased line to ADSL , we have cisco 800 router and Leased line connect to cisco 800 and after that we connect it to our NAT server , every thing was good and it work like charm , but after change connection type , ISP give us Zyxcel ADSL modem with 10 startic IP , and our IPS do not say what we must do with this ADSL modem and these IPs. we do not know , which mode we must use in ADSL modem , PPoE or bridge ? we do not know use PPoE or Bridge mode with ADSL modem and our ISP do not give us enough information , if I want make NAT server with PF with mode I must set in ADSL modem ? PPoE or bridge ? we do not know how we must config our NAT server , we do not know we need ppp or no ? we do not konw how we must config PF . we have to use 10 static IPs and we can not use one static IP , because of our policy . which options , I must add to my PF.conf From owner-freebsd-pf@FreeBSD.ORG Sun Nov 27 05:21:30 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 505EF106564A for ; Sun, 27 Nov 2011 05:21:30 +0000 (UTC) (envelope-from bc979@lafn.org) Received: from zoom.lafn.org (zoom.lafn.org [108.92.93.123]) by mx1.freebsd.org (Postfix) with ESMTP id F21FF8FC14 for ; Sun, 27 Nov 2011 05:21:29 +0000 (UTC) Received: from [10.0.1.2] (pool-108-23-64-87.lsanca.fios.verizon.net [108.23.64.87]) (authenticated bits=0) by zoom.lafn.org (8.14.3/8.14.2) with ESMTP id pAR4tl5v005499; Sat, 26 Nov 2011 20:55:48 -0800 (PST) (envelope-from bc979@lafn.org) Mime-Version: 1.0 (Apple Message framework v1251.1) Content-Type: text/plain; charset=iso-8859-1 From: Doug Hardie In-Reply-To: <4ED19ADF.90409@gmail.com> Date: Sat, 26 Nov 2011 20:55:47 -0800 Content-Transfer-Encoding: quoted-printable Message-Id: <6B7581DA-1EC8-4C86-BDCC-423A405364C6@lafn.org> References: <4ED19ADF.90409@gmail.com> To: Gholam Mostafa Faridi X-Mailer: Apple Mail (2.1251.1) X-Virus-Scanned: clamav-milter 0.97 at zoom.lafn.org X-Virus-Status: Clean Cc: freebsd-pf@freebsd.org Subject: Re: one ADSL connection with 10 static IPs and PF X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 27 Nov 2011 05:21:30 -0000 On 26 November 2011, at 18:05, Gholam Mostafa Faridi wrote: > we had Leased line before and we had 27 static IPs before , but our = ISP do not support is very well , and we change our ISP and we buy ADSL = connection with 10 static IPs , my NAT Server is OpenBSD 5 , and I will = change it FreeBSD 8.2 . > Can I do this with FreeBSD 8.2 and PF ? Should work fine. I have been running a somewhat similar setup for a = couple years without any issues. > Do I have to add some options in Kernel or no ? Probably not. I use a custom kernel because I need the quota option. > before we change our connection type from Leased line to ADSL , we = have cisco 800 router and Leased line connect to cisco 800 and after = that we connect it to our NAT server , every thing was good and it work = like charm , but after change connection type , ISP give us Zyxcel ADSL = modem with 10 startic IP , and our IPS do not say what we must do with = this ADSL modem and these IPs. > we do not know , which mode we must use in ADSL modem , PPoE or bridge = ? That depends on how the ADSL is configured. You will need to get that = information from the ISP. Or you can try it both ways and see which one = works. The wrong setting will not work at all. You won't be able to = establish a link to the ISP. One of the lights on the modem will remain = red. > we do not know use PPoE or Bridge mode with ADSL modem and our ISP do = not give us enough information , if I want make NAT server with PF with = mode I must set in ADSL modem ? PPoE or bridge ? See above. > we do not know how we must config our NAT server , Probably the only change is to the static IP addresses. > we do not know we need ppp or no ? Probably not. > we do not konw how we must config PF . Should be the same as before with IP addresses changed appropriately. = The only issue might be the pf commands changed somewhat in one of the = later OBSD releases. You may have to revert to the older syntax. > we have to use 10 static IPs and we can not use one static IP , = because of our policy . > which options , I must add to my PF.conf > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" >=20 From owner-freebsd-pf@FreeBSD.ORG Sun Nov 27 17:58:17 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CA8AA1065670 for ; Sun, 27 Nov 2011 17:58:17 +0000 (UTC) (envelope-from jinhitman@gmail.com) Received: from mail-bw0-f54.google.com (mail-bw0-f54.google.com [209.85.214.54]) by mx1.freebsd.org (Postfix) with ESMTP id 5955E8FC0C for ; Sun, 27 Nov 2011 17:58:17 +0000 (UTC) Received: by bkbzs8 with SMTP id zs8so9031588bkb.13 for ; Sun, 27 Nov 2011 09:58:16 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=NPU6yg1sP75v0blacMat3R5bH/29g1YG5WTWx3VqV14=; b=Dql2UM+WTsfgZ1j5+Ee5Z86oBiHWDkXzvv4UmB/0G3owUEw78sI9m80hPl734qDcxC qkkFcKcW9SFcPguR+2esYtJWjgcTiX5KvMwyElldo7yde0JSkxC8gMPNXVhGBKp3ndUu fniXK6C566oEpVU+6NJQnCk5MzZY0YBAGVHMQ= Received: by 10.204.153.195 with SMTP id l3mr6485457bkw.132.1322414942698; Sun, 27 Nov 2011 09:29:02 -0800 (PST) Received: from debi.nexenta.local ([178.233.26.43]) by mx.google.com with ESMTPS id r5sm36268245fam.4.2011.11.27.09.29.01 (version=SSLv3 cipher=OTHER); Sun, 27 Nov 2011 09:29:01 -0800 (PST) Message-ID: <4ED2735A.5020406@gmail.com> Date: Sun, 27 Nov 2011 19:28:58 +0200 From: Fatal Error User-Agent: Mozilla/5.0 (X11; Linux i686 on x86_64; rv:8.0) Gecko/20111105 Thunderbird/8.0 MIME-Version: 1.0 To: freebsd-pf@freebsd.org References: <4ED19ADF.90409@gmail.com> In-Reply-To: <4ED19ADF.90409@gmail.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: one ADSL connection with 10 static IPs and PF X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 27 Nov 2011 17:58:17 -0000 On 11/27/2011 04:05 AM, Gholam Mostafa Faridi wrote: > we had Leased line before and we had 27 static IPs before , but our > ISP do not support is very well , and we change our ISP and we buy > ADSL connection with 10 static IPs , my NAT Server is OpenBSD 5 , and > I will change it FreeBSD 8.2 . > Can I do this with FreeBSD 8.2 and PF ? Do I have to add some options > in Kernel or no ? > before we change our connection type from Leased line to ADSL , we > have cisco 800 router and Leased line connect to cisco 800 and after > that we connect it to our NAT server , every thing was good and it > work like charm , but after change connection type , ISP give us > Zyxcel ADSL modem with 10 startic IP , and our IPS do not say what we > must do with this ADSL modem and these IPs. > we do not know , which mode we must use in ADSL modem , PPoE or bridge > ? we do not know use PPoE or Bridge mode with ADSL modem and our ISP > do not give us enough information , if I want make NAT server with PF > with mode I must set in ADSL modem ? PPoE or bridge ? > we do not know how we must config our NAT server , > we do not know we need ppp or no ? > we do not konw how we must config PF . > we have to use 10 static IPs and we can not use one static IP , > because of our policy . > which options , I must add to my PF.conf > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" Hi. I had same problem with Zyxcel Brand Adsl Modem two weeks ago. I did not find true options how to use bridge mode option with PPPoE Protocol on Zyxcel P-600 with same time and together. Because the Zyxel P-600 doesn't support Bridge Mode Option on PPPoE. Than I choosed PPPoE. At least this time I have a reliable Adsl connection. You have two option. -Change adsl modem another one which support PPPoE and Bridge Mode Options on the same time (and together). This option is easy and preferably. -Choose the PPPoE mode. Make more than one virtual interfaces on the OpenBSD, and write your own rules for nat. If you need to further information about virtual interfaces, fallow below link. http://www.openbsd.org/faq/faq6.html#Setup.aliases From owner-freebsd-pf@FreeBSD.ORG Sun Nov 27 21:52:50 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 112F5106566B for ; Sun, 27 Nov 2011 21:52:50 +0000 (UTC) (envelope-from mostafafaridi@gmail.com) Received: from mail-lpp01m010-f54.google.com (mail-lpp01m010-f54.google.com [209.85.215.54]) by mx1.freebsd.org (Postfix) with ESMTP id 814CD8FC13 for ; Sun, 27 Nov 2011 21:52:49 +0000 (UTC) Received: by lahv2 with SMTP id v2so640411lah.13 for ; Sun, 27 Nov 2011 13:52:48 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=LM6ZVZiYceUG4lxOBhg+1pOogeP0OtJwPc+Ndebc/Ns=; b=MY71qI9UWQF7ygxKM7q2XgSDD0q0YCYzX+TIjn2JfRO+inOPIWK/74kbU0JEON/Qh2 OV7jOByaElwZMlGHBmULdXCY/S49tC9tOxd13XBGsWnARz5O2v6g3hm98yXD8/bRuSi5 Mog10IdJgxJ1cTdgsdBOzQu3iqyoRX+srEw2w= MIME-Version: 1.0 Received: by 10.152.109.198 with SMTP id hu6mr26808283lab.11.1322430767939; Sun, 27 Nov 2011 13:52:47 -0800 (PST) Received: by 10.152.23.137 with HTTP; Sun, 27 Nov 2011 13:52:47 -0800 (PST) Received: by 10.152.23.137 with HTTP; Sun, 27 Nov 2011 13:52:47 -0800 (PST) In-Reply-To: <4ED2735A.5020406@gmail.com> References: <4ED19ADF.90409@gmail.com> <4ED2735A.5020406@gmail.com> Date: Mon, 28 Nov 2011 01:22:47 +0330 Message-ID: From: Mostaf Faridi To: Fatal Error Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-pf@freebsd.org Subject: Re: one ADSL connection with 10 static IPs and PF X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 27 Nov 2011 21:52:50 -0000 Thanks all, So I must choose PPoe, for this problem, but what I must do when I want use all ten static IPs? On Nov 27, 2011 9:28 PM, "Fatal Error" wrote: > On 11/27/2011 04:05 AM, Gholam Mostafa Faridi wrote: > >> we had Leased line before and we had 27 static IPs before , but our ISP >> do not support is very well , and we change our ISP and we buy ADSL >> connection with 10 static IPs , my NAT Server is OpenBSD 5 , and I will >> change it FreeBSD 8.2 . >> Can I do this with FreeBSD 8.2 and PF ? Do I have to add some options in >> Kernel or no ? >> before we change our connection type from Leased line to ADSL , we have >> cisco 800 router and Leased line connect to cisco 800 and after that we >> connect it to our NAT server , every thing was good and it work like charm >> , but after change connection type , ISP give us Zyxcel ADSL modem with 10 >> startic IP , and our IPS do not say what we must do with this ADSL modem >> and these IPs. >> we do not know , which mode we must use in ADSL modem , PPoE or bridge ? >> we do not know use PPoE or Bridge mode with ADSL modem and our ISP do not >> give us enough information , if I want make NAT server with PF with mode I >> must set in ADSL modem ? PPoE or bridge ? >> we do not know how we must config our NAT server , >> we do not know we need ppp or no ? >> we do not konw how we must config PF . >> we have to use 10 static IPs and we can not use one static IP , because >> of our policy . >> which options , I must add to my PF.conf >> ______________________________**_________________ >> freebsd-pf@freebsd.org mailing list >> http://lists.freebsd.org/**mailman/listinfo/freebsd-pf >> To unsubscribe, send any mail to "freebsd-pf-unsubscribe@**freebsd.org >> " >> > Hi. > I had same problem with Zyxcel Brand Adsl Modem two weeks ago. I did not > find true options how to use bridge mode option with PPPoE Protocol on > Zyxcel P-600 with same time and together. Because the Zyxel P-600 doesn't > support Bridge Mode Option on PPPoE. Than I choosed PPPoE. At least this > time I have a reliable Adsl connection. You have two option. > -Change adsl modem another one which support PPPoE and Bridge Mode Options > on the same time (and together). This option is easy and preferably. > -Choose the PPPoE mode. Make more than one virtual interfaces on the > OpenBSD, and write your own rules for nat. If you need to further > information about virtual interfaces, fallow below link. > http://www.openbsd.org/faq/**faq6.html#Setup.aliases > ______________________________**_________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/**mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@**freebsd.org > " > From owner-freebsd-pf@FreeBSD.ORG Sun Nov 27 22:39:23 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 212A7106564A for ; Sun, 27 Nov 2011 22:39:23 +0000 (UTC) (envelope-from Greg.Hennessy@nviz.net) Received: from mail2.jellyfishnet.co.uk (mail2.jellyfishnet.co.uk [93.91.20.10]) by mx1.freebsd.org (Postfix) with ESMTP id AD53E8FC14 for ; Sun, 27 Nov 2011 22:39:22 +0000 (UTC) Received: from pemexhub02.jellyfishnet.co.uk.local (93.91.20.3) by mail2.jellyfishnet.co.uk (93.91.20.10) with Microsoft SMTP Server (TLS) id 8.1.436.0; Sun, 27 Nov 2011 22:28:28 +0000 Received: from PEMEXMBXVS04.jellyfishnet.co.uk.local ([192.168.65.52]) by pemexhub02.jellyfishnet.co.uk.local ([192.168.65.8]) with mapi; Sun, 27 Nov 2011 22:28:20 +0000 From: Greg Hennessy To: Mostaf Faridi , Fatal Error Date: Sun, 27 Nov 2011 22:23:19 +0000 Thread-Topic: one ADSL connection with 10 static IPs and PF Thread-Index: AcytTuyHo8BHl+yBR5+oHRBoRdgd4wAA8OAD Message-ID: <9EB23F6C23A8B6488E8BCC92A48E8326128387FD5C@PEMEXMBXVS04.jellyfishnet.co.uk.local> References: <4ED19ADF.90409@gmail.com> <4ED2735A.5020406@gmail.com>, In-Reply-To: Accept-Language: en-US, en-GB Content-Language: en-GB X-MS-Has-Attach: X-MS-TNEF-Correlator: acceptlanguage: en-US, en-GB Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Cc: "freebsd-pf@freebsd.org" Subject: RE: one ADSL connection with 10 static IPs and PF X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 27 Nov 2011 22:39:23 -0000 If the Zyxel ADSL router supports PPP half bridge mode, configure that and = then configure the PF host with the real IP addresses as appropriate.=20 =20 Otherwise replace the router with something which does support PPP half bri= dge. Thomson Speedtouch is pretty solid in this space.=20 http://goo.gl/yr76Y There was a thread on the PFSense mailing list a few weeks back with the sa= me question.=20 Regards Greg ________________________________________ From: owner-freebsd-pf@freebsd.org [owner-freebsd-pf@freebsd.org] On Behalf= Of Mostaf Faridi [mostafafaridi@gmail.com] Sent: 28 November 2011 08:52 To: Fatal Error Cc: freebsd-pf@freebsd.org Subject: Re: one ADSL connection with 10 static IPs and PF Thanks all, So I must choose PPoe, for this problem, but what I must do when I want use all ten static IPs?= From owner-freebsd-pf@FreeBSD.ORG Mon Nov 28 05:29:25 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BF2401065673 for ; Mon, 28 Nov 2011 05:29:25 +0000 (UTC) (envelope-from mostafafaridi@gmail.com) Received: from mail-lpp01m010-f54.google.com (mail-lpp01m010-f54.google.com [209.85.215.54]) by mx1.freebsd.org (Postfix) with ESMTP id 3F6358FC19 for ; Mon, 28 Nov 2011 05:29:24 +0000 (UTC) Received: by lahv2 with SMTP id v2so748342lah.13 for ; Sun, 27 Nov 2011 21:29:23 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=v93PznK69PRvfisF1z0Dy3uip+jbuALWnSvVSLZkj5w=; b=lV81sV3PBIWW2tutmQ5jxmzyjHGl4R3pvWvWqbAHmcY+AWY2XwAatoyN7CoBGD8Ke9 eSOIOxMaoN73HySwHeD49n7D4zTf0H17nX59wwGrGIv/kG55W2lgyM34PTDtJkIh3C7L fEgHUxNo+xlKHPUviBAcUfIbyPaD0WjtifQe0= MIME-Version: 1.0 Received: by 10.152.104.167 with SMTP id gf7mr27298238lab.46.1322458163918; Sun, 27 Nov 2011 21:29:23 -0800 (PST) Received: by 10.152.23.137 with HTTP; Sun, 27 Nov 2011 21:29:23 -0800 (PST) Received: by 10.152.23.137 with HTTP; Sun, 27 Nov 2011 21:29:23 -0800 (PST) In-Reply-To: <9EB23F6C23A8B6488E8BCC92A48E8326128387FD5C@PEMEXMBXVS04.jellyfishnet.co.uk.local> References: <4ED19ADF.90409@gmail.com> <4ED2735A.5020406@gmail.com> <9EB23F6C23A8B6488E8BCC92A48E8326128387FD5C@PEMEXMBXVS04.jellyfishnet.co.uk.local> Date: Mon, 28 Nov 2011 08:59:23 +0330 Message-ID: From: Mostaf Faridi To: Greg Hennessy Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: "freebsd-pf@freebsd.org" Subject: RE: one ADSL connection with 10 static IPs and PF X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 28 Nov 2011 05:29:25 -0000 I can not find another ADSL modem here, I can find TP-Link, but I do not know , it work or no On Nov 28, 2011 1:58 AM, "Greg Hennessy" wrote: > If the Zyxel ADSL router supports PPP half bridge mode, configure that and > then configure the PF host with the real IP addresses as appropriate. > > Otherwise replace the router with something which does support PPP half > bridge. Thomson Speedtouch is pretty solid in this space. > > http://goo.gl/yr76Y > > There was a thread on the PFSense mailing list a few weeks back with the > same question. > > > Regards > > Greg > > ________________________________________ > From: owner-freebsd-pf@freebsd.org [owner-freebsd-pf@freebsd.org] On > Behalf Of Mostaf Faridi [mostafafaridi@gmail.com] > Sent: 28 November 2011 08:52 > To: Fatal Error > Cc: freebsd-pf@freebsd.org > Subject: Re: one ADSL connection with 10 static IPs and PF > > Thanks all, > So I must choose PPoe, for this problem, but what I must do when I want > use all ten static IPs? From owner-freebsd-pf@FreeBSD.ORG Mon Nov 28 11:07:26 2011 Return-Path: Delivered-To: freebsd-pf@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 724DC1065688 for ; Mon, 28 Nov 2011 11:07:26 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 5766B8FC30 for ; Mon, 28 Nov 2011 11:07:26 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id pASB7QV9042823 for ; Mon, 28 Nov 2011 11:07:26 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id pASB7PjQ042807 for freebsd-pf@FreeBSD.org; Mon, 28 Nov 2011 11:07:25 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 28 Nov 2011 11:07:25 GMT Message-Id: <201111281107.pASB7PjQ042807@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-pf@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-pf@FreeBSD.org X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 28 Nov 2011 11:07:26 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/160370 pf [pf] Incorrect pfctl check of pf.conf o kern/155736 pf [pf] [altq] borrow from parent queue does not work wit o kern/153307 pf [pf] Bug with PF firewall o kern/148290 pf [pf] "sticky-address" option of Packet Filter (PF) blo o kern/148260 pf [pf] [patch] pf rdr incompatible with dummynet o kern/147789 pf [pf] Firewall PF no longer drops connections by sendin o kern/143543 pf [pf] [panic] PF route-to causes kernel panic o bin/143504 pf [patch] outgoing states are not killed by authpf(8) o conf/142961 pf [pf] No way to adjust pidfile in pflogd o conf/142817 pf [patch] etc/rc.d/pf: silence pfctl o kern/141905 pf [pf] [panic] pf kernel panic on 7.2-RELEASE with empty o kern/140697 pf [pf] pf behaviour changes - must be documented o kern/137982 pf [pf] when pf can hit state limits, random IP failures o kern/136781 pf [pf] Packets appear to drop with pf scrub and if_bridg o kern/135948 pf [pf] [gre] pf not natting gre protocol o kern/135162 pf [pfsync] pfsync(4) not usable with GENERIC kernel o kern/134996 pf [pf] Anchor tables not included when pfctl(8) is run w o kern/133732 pf [pf] max-src-conn issue o kern/132769 pf [pf] [lor] 2 LOR's with pf task mtx / ifnet and rtent f kern/132176 pf [pf] pf stalls connection when using route-to [regress o conf/130381 pf [rc.d] [pf] [ip6] ipv6 not fully configured when pf st o kern/129861 pf [pf] [patch] Argument names reversed in pf_table.c:_co o kern/127920 pf [pf] ipv6 and synproxy don't play well together o conf/127814 pf [pf] The flush in pf_reload in /etc/rc.d/pf does not w o kern/127439 pf [pf] deadlock in pf f kern/127345 pf [pf] Problem with PF on FreeBSD7.0 [regression] o kern/127121 pf [pf] [patch] pf incorrect log priority o kern/127042 pf [pf] [patch] pf recursion panic if interface group is o kern/125467 pf [pf] pf keep state bug while handling sessions between s kern/124933 pf [pf] [ip6] pf does not support (drops) IPv6 fragmented o kern/124364 pf [pf] [panic] Kernel panic with pf + bridge o kern/122773 pf [pf] pf doesn't log uid or pid when configured to o kern/122014 pf [pf] [panic] FreeBSD 6.2 panic in pf o kern/120281 pf [pf] [request] lost returning packets to PF for a rdr o kern/120057 pf [pf] [patch] Allow proper settings of ALTQ_HFSC. The c o bin/118355 pf [pf] [patch] pfctl(8) help message options order false o kern/114567 pf [pf] [lor] pf_ioctl.c + if.c s conf/110838 pf [pf] tagged parameter on nat not working on FreeBSD 5. o kern/103283 pf pfsync fails to sucessfully transfer some sessions o kern/103281 pf pfsync reports bulk update failures o kern/93825 pf [pf] pf reply-to doesn't work o sparc/93530 pf [pf] Incorrect checksums when using pf's route-to on s o kern/92949 pf [pf] PF + ALTQ problems with latency o bin/86635 pf [patch] pfctl(8): allow new page character (^L) in pf. o kern/82271 pf [pf] cbq scheduler cause bad latency 45 problems total. From owner-freebsd-pf@FreeBSD.ORG Tue Nov 29 05:24:02 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1B3B01065672 for ; Tue, 29 Nov 2011 05:24:02 +0000 (UTC) (envelope-from mostafafaridi@gmail.com) Received: from mail-lpp01m010-f54.google.com (mail-lpp01m010-f54.google.com [209.85.215.54]) by mx1.freebsd.org (Postfix) with ESMTP id 8E2468FC0C for ; Tue, 29 Nov 2011 05:24:01 +0000 (UTC) Received: by lahv2 with SMTP id v2so1309537lah.13 for ; Mon, 28 Nov 2011 21:24:00 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=Z465JJR7Jtn6svGx8bX6JfvwYA9n+C0hLakTP2REYSA=; b=jim6GiNpd/wiOhPRt0vvZm1oSAFo/zF9fKkyVwmP1CLIWCbymGF9vtUW0oSH8iDklj vBYdTWPdoACLGaQFBLDDe1R7JipeXnAb+fovNidBA7pQWUhXxBMm08PbH+ynv4/R9tJC kENwDJcOkRNvuFOQgmg7u8ph1lMZ1l7JiBilM= MIME-Version: 1.0 Received: by 10.152.105.132 with SMTP id gm4mr29990778lab.39.1322544240221; Mon, 28 Nov 2011 21:24:00 -0800 (PST) Received: by 10.152.23.137 with HTTP; Mon, 28 Nov 2011 21:23:59 -0800 (PST) Received: by 10.152.23.137 with HTTP; Mon, 28 Nov 2011 21:23:59 -0800 (PST) In-Reply-To: References: <4ED19ADF.90409@gmail.com> <4ED2735A.5020406@gmail.com> <9EB23F6C23A8B6488E8BCC92A48E8326128387FD5C@PEMEXMBXVS04.jellyfishnet.co.uk.local> Date: Tue, 29 Nov 2011 08:53:59 +0330 Message-ID: From: Mostaf Faridi To: Greg Hennessy Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: "freebsd-pf@freebsd.org" Subject: RE: one ADSL connection with 10 static IPs and PF X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 29 Nov 2011 05:24:02 -0000 Can I do this with Linux? Very easy than BSD On Nov 28, 2011 8:59 AM, "Mostaf Faridi" wrote: > I can not find another ADSL modem here, I can find TP-Link, but I do not > know , it work or no > On Nov 28, 2011 1:58 AM, "Greg Hennessy" wrote: > >> If the Zyxel ADSL router supports PPP half bridge mode, configure that >> and then configure the PF host with the real IP addresses as appropriate. >> >> Otherwise replace the router with something which does support PPP half >> bridge. Thomson Speedtouch is pretty solid in this space. >> >> http://goo.gl/yr76Y >> >> There was a thread on the PFSense mailing list a few weeks back with the >> same question. >> >> >> Regards >> >> Greg >> >> ________________________________________ >> From: owner-freebsd-pf@freebsd.org [owner-freebsd-pf@freebsd.org] On >> Behalf Of Mostaf Faridi [mostafafaridi@gmail.com] >> Sent: 28 November 2011 08:52 >> To: Fatal Error >> Cc: freebsd-pf@freebsd.org >> Subject: Re: one ADSL connection with 10 static IPs and PF >> >> Thanks all, >> So I must choose PPoe, for this problem, but what I must do when I want >> use all ten static IPs? > > From owner-freebsd-pf@FreeBSD.ORG Tue Nov 29 14:36:12 2011 Return-Path: Delivered-To: freebsd-pf@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A3DDB106566C; Tue, 29 Nov 2011 14:36:12 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 7B68A8FC13; Tue, 29 Nov 2011 14:36:12 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id pATEaCub095048; Tue, 29 Nov 2011 14:36:12 GMT (envelope-from linimon@freefall.freebsd.org) Received: (from linimon@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id pATEaCBW095044; Tue, 29 Nov 2011 14:36:12 GMT (envelope-from linimon) Date: Tue, 29 Nov 2011 14:36:12 GMT Message-Id: <201111291436.pATEaCBW095044@freefall.freebsd.org> To: linimon@FreeBSD.org, freebsd-bugs@FreeBSD.org, freebsd-pf@FreeBSD.org From: linimon@FreeBSD.org Cc: Subject: Re: kern/162947: [pf] [patch] pfsync_defer return ignored with __FreeBSD__ X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 29 Nov 2011 14:36:12 -0000 Old Synopsis: pfsync_defer return ignored with __FreeBSD__ New Synopsis: [pf] [patch] pfsync_defer return ignored with __FreeBSD__ Responsible-Changed-From-To: freebsd-bugs->freebsd-pf Responsible-Changed-By: linimon Responsible-Changed-When: Tue Nov 29 14:36:01 UTC 2011 Responsible-Changed-Why: Over to maintainer(s). http://www.freebsd.org/cgi/query-pr.cgi?pr=162947 From owner-freebsd-pf@FreeBSD.ORG Tue Nov 29 21:57:22 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5E7781065672 for ; Tue, 29 Nov 2011 21:57:22 +0000 (UTC) (envelope-from Greg.Hennessy@nviz.net) Received: from mail2.jellyfishnet.co.uk (mail2.jellyfishnet.co.uk [93.91.20.10]) by mx1.freebsd.org (Postfix) with ESMTP id E6C2F8FC12 for ; Tue, 29 Nov 2011 21:57:21 +0000 (UTC) Received: from pemexhub02.jellyfishnet.co.uk.local (93.91.20.3) by mail2.jellyfishnet.co.uk (93.91.20.10) with Microsoft SMTP Server (TLS) id 8.1.436.0; Tue, 29 Nov 2011 21:57:20 +0000 Received: from PEMEXMBXVS04.jellyfishnet.co.uk.local ([192.168.65.52]) by pemexhub02.jellyfishnet.co.uk.local ([192.168.65.8]) with mapi; Tue, 29 Nov 2011 21:57:12 +0000 From: Greg Hennessy To: "freebsd-pf@freebsd.org" Date: Tue, 29 Nov 2011 21:56:15 +0000 Thread-Topic: one ADSL connection with 10 static IPs and PF Thread-Index: AcytTuyHo8BHl+yBR5+oHRBoRdgd4wBkk/p9 Message-ID: <9EB23F6C23A8B6488E8BCC92A48E8326128387FD65@PEMEXMBXVS04.jellyfishnet.co.uk.local> References: <4ED19ADF.90409@gmail.com> <4ED2735A.5020406@gmail.com>, In-Reply-To: Accept-Language: en-US, en-GB Content-Language: en-GB X-MS-Has-Attach: X-MS-TNEF-Correlator: acceptlanguage: en-US, en-GB Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Subject: RE: one ADSL connection with 10 static IPs and PF X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 29 Nov 2011 21:57:22 -0000 It's not an operating system issue, it is an encapsulation and handoff issu= e and where that happens.=20 =20 If you can configure the adsl modem as a pure bridge, then you can perform = the PPPoE encapsulation and handoff on FreeBSD itself. =20 A quick google will provide the recipe for that. =20 =20 ---------------------------------------------------------------------------= ----- From: Mostaf Faridi [mostafafaridi@gmail.com] Sent: 29 November 2011 16:23 To: Greg Hennessy Cc: Fatal Error; freebsd-pf@freebsd.org Subject: RE: one ADSL connection with 10 static IPs and PF Can I do this with Linux? Very easy than BSD=20 On Nov 28, 2011 8:59 AM, "Mostaf Faridi" wrote: I can not find another ADSL modem here, I can find TP-Link, but I do not kn= ow , it work or no On Nov 28, 2011 1:58 AM, "Greg Hennessy" wrote: If the Zyxel ADSL router supports PPP half bridge mode, configure that and = then configure the PF host with the real IP addresses as appropriate. Otherwise replace the router with something which does support PPP half bri= dge. Thomson Speedtouch is pretty solid in this space. http://goo.gl/yr76Y There was a thread on the PFSense mailing list a few weeks back with the sa= me question. Regards Greg ________________________________________ From: owner-freebsd-pf@freebsd.org [owner-freebsd-pf@freebsd.org] On Behalf= Of Mostaf Faridi [mostafafaridi@gmail.com] Sent: 28 November 2011 08:52 To: Fatal Error Cc: freebsd-pf@freebsd.org Subject: Re: one ADSL connection with 10 static IPs and PF Thanks all, So I must choose PPoe, for this problem, but what I must do when I want use all ten static IPs?= From owner-freebsd-pf@FreeBSD.ORG Wed Nov 30 08:48:44 2011 Return-Path: Delivered-To: freebsd-pf@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3A0C8106566C; Wed, 30 Nov 2011 08:48:44 +0000 (UTC) (envelope-from glebius@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 11A278FC14; Wed, 30 Nov 2011 08:48:44 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id pAU8mh6O032180; Wed, 30 Nov 2011 08:48:43 GMT (envelope-from glebius@freefall.freebsd.org) Received: (from glebius@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id pAU8mhSV032175; Wed, 30 Nov 2011 08:48:43 GMT (envelope-from glebius) Date: Wed, 30 Nov 2011 08:48:43 GMT Message-Id: <201111300848.pAU8mhSV032175@freefall.freebsd.org> To: matthieu.kraus@s2008.tu-chemnitz.de, glebius@FreeBSD.org, freebsd-pf@FreeBSD.org, glebius@FreeBSD.org From: glebius@FreeBSD.org Cc: Subject: Re: kern/162947: [pf] [patch] pfsync_defer return ignored with __FreeBSD__ X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Nov 2011 08:48:44 -0000 Synopsis: [pf] [patch] pfsync_defer return ignored with __FreeBSD__ State-Changed-From-To: open->patched State-Changed-By: glebius State-Changed-When: Wed Nov 30 08:48:14 UTC 2011 State-Changed-Why: Fixed in head/. Responsible-Changed-From-To: freebsd-pf->glebius Responsible-Changed-By: glebius Responsible-Changed-When: Wed Nov 30 08:48:14 UTC 2011 Responsible-Changed-Why: Fixed in head/. http://www.freebsd.org/cgi/query-pr.cgi?pr=162947 From owner-freebsd-pf@FreeBSD.ORG Wed Nov 30 21:54:06 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 68970106566C for ; Wed, 30 Nov 2011 21:54:06 +0000 (UTC) (envelope-from alancyang@gmail.com) Received: from mail-fx0-f54.google.com (mail-fx0-f54.google.com [209.85.161.54]) by mx1.freebsd.org (Postfix) with ESMTP id 059BC8FC1B for ; Wed, 30 Nov 2011 21:54:05 +0000 (UTC) Received: by faak28 with SMTP id k28so1419871faa.13 for ; Wed, 30 Nov 2011 13:54:05 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; bh=+BZhNXeOwalPxWx+z7YiVx1xDyoSfxUtzZ9Wyl/TkTs=; b=Nx9HyxN2oHKy748omu+NLQwPXKOKhpH7jlqIC6CSKA+4/ZPL43sacjj2npAm2ycwOH Nr/S3Ybcuesffx0UN640nx2yk4twJXk/NspKSm+OAz+rSVVftAyrh3sYADIpVr3XlXRj +exNMeiBkNyY0npoP1BeuHYgWUI//7Uh0C8Rc= MIME-Version: 1.0 Received: by 10.180.84.10 with SMTP id u10mr223815wiy.65.1322688497657; Wed, 30 Nov 2011 13:28:17 -0800 (PST) Received: by 10.216.168.195 with HTTP; Wed, 30 Nov 2011 13:28:17 -0800 (PST) Date: Wed, 30 Nov 2011 13:28:17 -0800 Message-ID: From: alan yang To: freebsd-pf@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Subject: pf + ALTQ and DiffServ on FreeBSD 8.2 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Nov 2011 21:54:06 -0000 Hello, I am searching for DiffServ implementation for FreeBSD. Looking at FreeBSD 8.2 release, and wonder: 1) how close pf + ALTQ could be used as DiffServ framework to develop functions defined in DIFFSERV-MIB? 2) altqd, altq.conf is not available, for ALTQ configuration those have to be ported? 3) SNMP diffserv MIB implementation, heard it would be available at 9.0 release? 4) /dev/altq not exist for FreeBSD 8.0 system? Thanks in advance for shedding lights! Regards, Alan