From owner-freebsd-questions Tue Oct 10 15:44:55 2000 Delivered-To: freebsd-questions@freebsd.org Received: from web111.yahoomail.com (web111.yahoomail.com [205.180.60.81]) by hub.freebsd.org (Postfix) with SMTP id 22E9937B503 for ; Tue, 10 Oct 2000 15:44:51 -0700 (PDT) Received: (qmail 24317 invoked by uid 60001); 10 Oct 2000 22:44:50 -0000 Message-ID: <20001010224450.24316.qmail@web111.yahoomail.com> Received: from [128.111.151.58] by web111.yahoomail.com; Tue, 10 Oct 2000 15:44:50 PDT Date: Tue, 10 Oct 2000 15:44:50 -0700 (PDT) From: Chris Dempsey Subject: Re: Ethernet config To: "ROTHENBERG, MICHAEL" , 'Mike Meyer' Cc: 'FreeBSD-questions' MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Me too! I am running two win boxes and a bsd box behind the same router setup, using a cable modem -> router -> 100mb switch -> bsd box. The router uses a web-based 192.168.1.1 configuration screen and does DHCP, dynamic/static routing, and limited port forwarding. It has an option to place one box on the "DMZ," what that does I am not sure. All of the relevant information is entered into the webbased setup screens. Anyways, it all works fine in my setup. I have yet to play around with the BSD box as a router/hub and compare performance and security, but the router setup now works pretty darn good. Port forwarding to both ssh (22) and telnet (23) are able to work fine, but I have also yet to check other ports. NAT works perfectly. I have xl0 setup as ifconfig="DHCP" and it works fine. --- "ROTHENBERG, MICHAEL" wrote: > Cool product. Hummm... so it does DHCP and gets an > address assigned. Assume > it doesn't get a 192.168 address of its own for the > external interface. Then > does NAT on anything from the inside. Sounds like my > BSD box }:) I don't > think that it has anything to do with this device. > You have run other things > though it and gotten good results. So that means its > local to the BSD box > and how it is handling things. > > On a picky note with a guess, your box's interface > is set to netmask > 0xffffff00 while the hub/router is netmask > 0xffff0000 if it is 192.168 > based. This might mean that your box is missing some > broadcasts?? Or not. > I'm not sure how that really works. with the > different masks. Have to go > home and grab some books. > > I'm not sure what's happening Mike. IPFW getting in > the way? > > -Michael > > -----Original Message----- > From: Mike Meyer [mailto:mwm@mired.org] > Sent: Tuesday, October 10, 2000 3:30 PM > To: ROTHENBERG, MICHAEL > Subject: RE: Network trickles ...... > > > ROTHENBERG, MICHAEL writes: > > Not familiar with the linksys products. You would > have to look at the > > product spec to find out for sure. If you have a > hub/router that seems to > be > > a strange combo. If it combines routing into the > mix then you have to > assign > > the router an actual IP address. Did you do that > with your box? If not > then > > its probably just a buffered hub or switch device. > Most of the inexpensive > > 'hubs' are plain vanilla hubs and work fine for > small office/home nets. I > > use a 3com office connect 4 port at home. If I had > done more research I > > could have saved $100+ by buying something cheaper > that does exactly the > > same thing. Live and learn... > > The Lynksys is a strange combo - but it's not the > only such product, > and I expect you'll start seeing more of them. It's > a 4-port 100Mb > hub, along with a 10Mb connection designed to talk > to a cable or dsl > modem. It's a DHCP client on the 10Mb side, and > plays DHCP host and > does NAT to the 100Mb side. It also does firewall > work, with limited > filtering and port forwarding. People port scanning > it show that it's > pretty much transparent. > > The setup is plug-n-play if all you've got is DHCP > clients. The > downside is that you can't turn off NAT, and it only > handles the > 192.168 internal subnet. I'm not sure if it will > even do NAT for > things other than 192.168.1. Street price is about > $160. > > The specs say "Four 10/100 RJ45 Switched > connectors". > > Thanx, >