From owner-freebsd-questions Thu Mar 25 23:32:57 1999 Delivered-To: freebsd-questions@freebsd.org Received: from stennis.ca.sandia.gov (stennis.ca.sandia.gov [146.246.243.44]) by hub.freebsd.org (Postfix) with ESMTP id 79E2215013 for ; Thu, 25 Mar 1999 23:32:56 -0800 (PST) (envelope-from bmah@stennis.ca.sandia.gov) Received: (from bmah@localhost) by stennis.ca.sandia.gov (8.9.3/8.9.3) id XAA28795; Thu, 25 Mar 1999 23:32:26 -0800 (PST) Message-Id: <199903260732.XAA28795@stennis.ca.sandia.gov> X-Mailer: exmh version 2.0.2 2/24/98 To: Nick Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Cable modem: Firewall & Ip Aliasing In-Reply-To: Your message of "Thu, 25 Mar 1999 19:29:41 GMT." From: bmah@CA.Sandia.GOV (Bruce A. Mah) Reply-To: bmah@CA.Sandia.GOV X-Face: g~c`.{#4q0"(V*b#g[i~rXgm*w;:nMfz%_RZLma)UgGN&=j`5vXoU^@n5v4:OO)c["!w)nD/!!~e4Sj7LiT'6*wZ83454H""lb{CC%T37O!!'S$S&D}sem7I[A 2V%N&+ X-Url: http://www.ca.sandia.gov/~bmah/ Mime-Version: 1.0 Content-Type: multipart/signed; boundary="==_Exmh_672222227P"; micalg=pgp-md5; protocol="application/pgp-signature" Content-Transfer-Encoding: 7bit Date: Thu, 25 Mar 1999 23:32:25 -0800 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG --==_Exmh_672222227P Content-Type: text/plain; charset=us-ascii If memory serves me right, Nick wrote: > I'm trying to set up a LAN which is connected to the internet via cable > modem. I am doing this by setting up one computer (lets call it wolf) as a > firewall/gateway for my workstation (lets cann it yeaben) OK. I have a setup like this at home, except that my "inside" machines are dual boot Win95/FreeBSD instead of SuSE. > Ok so im setting wolf up as the FIREWALL & want to masquerade the internal > lan with a net address of 10.x here is my layout > > _FreeBSD_ 3.0 _SuSE Linux_ 6.0 > [-WOLF-] A.B.C.D (outside IP address) [-YEABEN-] 10.2.0.2 > | ed1 | eth0 > | | > | | > \_________________________[-HUB-]____________/ > | > | > [-CABLE MODEM-] > | > | > / > / > [-GATEWAY-] A.B.C.1 > | > [-DNS-] A.1.64.33 Nice ASCII art. It's missing a few details such as what kind of a cable modem you're using (and the provider might be useful too), but I'm going to assume it's like the cable network I use, which is TCI@Home (no snickers please). If this were my system, I'd say it doesn't work because you shouldn't have the hub plugged into the cable modem. On the cable modem I use, there should be exactly one computer. My home network looks like this: (cable network)<-------[cable modem]-----[gateway] | [ hub ] / \ [machine1] [machine2] The gateway (analogous to wolf) is a FreeBSD machine with two Ethernet cards, and runs ipfw and natd. The interface towards the cable modem has the "outside IP address", and the one towards the hub has a private IP address (as do the single Ethernet interfaces on machine1 and machine2). As far as I know, the way you've wired it up will not work because your gateway machine needs to have separate "inside" and "outside" network interfaces. I'm not sure how the cable modem would react to being on the same Ethernet segment with two (as opposed to one) computers. I think if you buy another Ethernet card for wolf and wire it up like I drew above, it'll make a little more sense, and the answers to most of your other questions will fall into place. Good luck, Bruce. --==_Exmh_672222227P Content-Type: application/pgp-signature -----BEGIN PGP MESSAGE----- Version: 2.6.2 iQCVAwUBNvs4CajOOi0j7CY9AQENpAP+LF/BtOUMYTRFDjuTM+ZnB/UDoWoMw0lH k4L6kFReF3o7PM4h+/cyZRiDxAllxZBGKI1TNiwYOoc2RcYvlrWD+vhK/k0CnLmX QdMlHd+323sNO875D8Z20G3I+g/ytk/WMcZFMaCB1+nyEwCMOxC6V5sQ+iGrcpwg rPHeIaTFYl4= =2uqK -----END PGP MESSAGE----- --==_Exmh_672222227P-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message