From owner-freebsd-current@FreeBSD.ORG Thu Feb 23 09:23:46 2006 Return-Path: X-Original-To: freebsd-current@freebsd.org Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A0EA516A420 for ; Thu, 23 Feb 2006 09:23:46 +0000 (GMT) (envelope-from cianlists@cian.ws) Received: from mail.cian.ws (cian.ws [87.192.36.98]) by mx1.FreeBSD.org (Postfix) with ESMTP id 39B1343D48 for ; Thu, 23 Feb 2006 09:23:46 +0000 (GMT) (envelope-from cianlists@cian.ws) Received: from localhost (localhost.cian.ws [127.0.0.1]) by mail.cian.ws (Postfix) with ESMTP id 9227C33C6B for ; Sat, 18 Feb 2006 22:42:17 +0000 (GMT) Received: from mail.cian.ws ([127.0.0.1]) by localhost (oppy.cian.ws [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 62582-07 for ; Sat, 18 Feb 2006 22:42:12 +0000 (GMT) Received: from [10.0.1.5] (g5.cian.ws [10.0.1.5]) by mail.cian.ws (Postfix) with ESMTP id 680B833C6A for ; Sat, 18 Feb 2006 22:42:12 +0000 (GMT) Mime-Version: 1.0 (Apple Message framework v746.2) Content-Transfer-Encoding: 7bit Message-Id: <5FF33901-8CA6-49F0-9B39-0E5CD73A49E5@cian.ws> Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed To: freebsd-current@freebsd.org From: Cian Hughes Date: Sat, 18 Feb 2006 22:42:10 +0000 X-Pgp-Agent: GPGMail 1.1.1 (Tiger) X-Mailer: Apple Mail (2.746.2) X-Virus-Scanned: amavisd-new at cian.ws Subject: Networking Puzzle X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Feb 2006 09:23:46 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Here is one for those of you that like a challenge: I have a freebsd 7-current box, it has two interfaces rl0 (connected to wireless link) and rl1 (LAN) rl0 has no addresses I run PPPoE on rl0 which gives me an static IP address (lets call this 1.2.3.4) and Default Gateway. I also have a /29 of public IP's which are routed through this address the first address x.x.x.1 is assigned to rl1 The normal setup is a cisco router on the wireless link, and all computers route through it (but my cisco router is broken). Any traffic originating from 1.2.3.4 and going to the outside world is blocked by an upstream firewall that I have no control over, anything in my public range has no upstream firewalling. Sysctl is set to forward packets, and machines on the LAN with public ips in my range work as expected. however if i do something like this: ping freebsd.org it fails because the packets automatically originate from 1.2.3.4 if I do this: ping -S x.x.x.1 freebsd.org (thus setting the src address to a non- firewalled IP) it all goes fine and the packets return. Inbound connections (eg ssh) from the internet to x.x.x.1 work, but obviously any web access from my freebsd box fails. My Question: How do i set the src address for all outbound packets originating on my machine to x.x.x.1 instead of 1.2.3.4 when they are passing through my pppoe tunnel? BTW this is not a show stopper for me, I have placed an old PII machine between my server and the pppoe tunnel, which solves it. I'm just curious as to whether or not there is a solution. Regards, Cian. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (Darwin) iD8DBQFD96LCaVVfOlCF0TQRAmsQAJwJq5N77DJZ/SC6qCR8hDpz0ty2mACcCfWl s+/TkKXGcYiXFt3Ou2yxVdY= =S5Pc -----END PGP SIGNATURE-----