Re: DSL router when what I need is a bridge; ARP problem?

• Previous message: Joe Marcus Clarke: "Re: error on port install librsvg2"
• In reply to: Vince Hoffman: "RE: DSL router when what I need is a bridge; ARP problem?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 29 May 2003 11:19:28 -0600
To: Vince Hoffman <Vince.Hoffman@uk.circle.com>

>
>
>If i've understood you correctly you want to join two seperate physical
>network segments on the same subnet using the freebsd box.
>
>Since the join is the Freebsd box then getting that to bridge the two
>nics should work (assigning and IP to one if needed.)
>Otherwise you'll need some more routes and to make things more complex,
> a working example that I have in use (wanted to firewall a class c but
>was supplied with a managed router as .1 and didnt want to use bridging.)
>The router and firewalls routerside nic have a .252 netmask (subnet of
>.1 and .2) the router (.1) has a static route of x.y.z.0/24 via .2
>(firewalls external nic) the firewall has .1 as
>its default route. rest of class c has firewalls other nic (.194 for
>no good reason) as default route.
>
>
This is basically what I have set up. Unfortunately, the router box in
question, a cisco 678 DSL modem, doesn't do its routing job correctly,
and instead of forwarding packets via the (.2 in your case) firewall's
external network interface, queries that network looking for a direct
connection to the destination host.

According to the arp man page, arp should make it possible for the
firewall to handle this request, but it isn't. If the firewall would
pass it's own (.2 in your case) ethernet address as a proxy for the
requested internal host, the router would send the packet to the
firewall, which would then forward it appropriately.

Gary

_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"

• Previous message: Joe Marcus Clarke: "Re: error on port install librsvg2"
• In reply to: Vince Hoffman: "RE: DSL router when what I need is a bridge; ARP problem?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: solaris ... >> router while I attempted to explain the router was ... >> of handling a CLI OS like FreeBSD? ... that these individuals would not be the target market ... > despite the fact that it should include a firewall. ... (freebsd-questions) Re: Host Computer with ICS cannot be accessed ... You read my mind on the router thing. ... My home network is a piece of cake... ... >>firewall settings, not that I've found so far, but I'll keep looking. ... and we couldn't get file sharing working until ... (microsoft.public.windowsxp.network_web) Re: share my printer between 2 computers and surf with 2 computers at same time ... The main choice you have to make is whether to have the router include wireless capability or not. ... Because wireless routers for home use are relatively inexpensive these days, I'd suggest buying a wireless router even if you don't initially intend to use that capability. ... If you already have a UTP cable going between upstairs and downstairs, you can use that to have a wired network. ... caused by 1) a misconfigured firewall; ... (microsoft.public.windowsxp.network_web) Re: share my printer between 2 computers and surf with 2 computers at same time ... The main piece of hardware you need to buy is a router. ... Because wireless routers for home use are ... you can use that to have a wired network. ... caused by 1) a misconfigured firewall; ... (microsoft.public.windowsxp.network_web) RE: [Full-Disclosure] Re: January 15 is Personal Firewall Day, help the cause ... the>outside world which are in response to packets originating from ... to drop in a little Trojan, your whole network can be compromised. ... NAT router works at Layer 3. ... You still need a personal firewall or ... (Full-Disclosure)