Re: 2 Nic on same subnet.
Stephan Weaver wrote: Can you give me an example of how this is done? <--- please do not TOP POST From: Sarath ER <[EMAIL PROTECTED]> To: freebsd-questions@freebsd.org Subject: Re: 2 Nic on same subnet. Date: Tue, 21 Jun 2005 12:10:33 -0700 Stephan Weaver wrote: Hello All, I am trying to place my network behind a firewall [FreeBSD BASED]. What i have Done! I have 2 Nic in the BSD PC. vr0, vr1. Both on the same subnet eg. vr0 - 192.168.0.1 , vr1 - 192.168.0.2. I Plug the Ethernet Cable From the DSL modem Into my vr0 interface. I Plug the Ethernet Cable from the SWITCH into my vr1 interface. I am running ipnat as follows. ipnat.rules map vr0 192.168.0.0/24 -> 0.0.0.0/32 proxy port ftp ftp/tcp map vr0 192.168.0.0/24 -> 0.0.0.0/32 portmap tcp/udp 4:6 map vr0 192.168.0.0/24 -> 0.0.0.0/32 --- Here are some messages i get from my /var/log/messages. Jun 20 22:47:36 pizzaboys kernel: arp: 192.168.0.198 is on vr0 but got reply from 00:08:74:4f:57:c5 on vr1 Thank You, Stephan Weaver [EMAIL PROTECTED] You must delete the routes for the network from both interfaces and add individual host routes to the interfaces. Suppose you have a cable modem on vr0 add a host route for that Ip and assign it to vr0 interface and add the rest of the hosts in your lan in vr1 interface. Or you can choose a different network or subnet the same ip block Cheers, - Sarath ___ route delete -net yournetworkhere/maskhere <- you might have to do it twice... route add -host ipaddressofthelocalinterface -interface vr0 route add -host ipaddressofcablemodemhere -interface vr0 route add -host ipaddressofvr1here -interface vr1 route add -host firsthostinlan -interface vr1 route add -host secondhostinlan -interface vr1 I think this would do it... - Sarath ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: 2 Nic on same subnet.
Can you give me an example of how this is done? From: Sarath ER <[EMAIL PROTECTED]> To: freebsd-questions@freebsd.org Subject: Re: 2 Nic on same subnet. Date: Tue, 21 Jun 2005 12:10:33 -0700 Stephan Weaver wrote: Hello All, I am trying to place my network behind a firewall [FreeBSD BASED]. What i have Done! I have 2 Nic in the BSD PC. vr0, vr1. Both on the same subnet eg. vr0 - 192.168.0.1 , vr1 - 192.168.0.2. I Plug the Ethernet Cable From the DSL modem Into my vr0 interface. I Plug the Ethernet Cable from the SWITCH into my vr1 interface. I am running ipnat as follows. ipnat.rules map vr0 192.168.0.0/24 -> 0.0.0.0/32 proxy port ftp ftp/tcp map vr0 192.168.0.0/24 -> 0.0.0.0/32 portmap tcp/udp 4:6 map vr0 192.168.0.0/24 -> 0.0.0.0/32 --- Here are some messages i get from my /var/log/messages. Jun 20 22:47:36 pizzaboys kernel: arp: 192.168.0.198 is on vr0 but got reply from 00:08:74:4f:57:c5 on vr1 Thank You, Stephan Weaver [EMAIL PROTECTED] _ Express yourself instantly with MSN Messenger! Download today it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" You must delete the routes for the network from both interfaces and add individual host routes to the interfaces. Suppose you have a cable modem on vr0 add a host route for that Ip and assign it to vr0 interface and add the rest of the hosts in your lan in vr1 interface. Or you can choose a different network or subnet the same ip block Cheers, - Sarath ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" _ Express yourself instantly with MSN Messenger! Download today it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: 2 Nic on same subnet.
Stephan Weaver wrote: Hello All, I am trying to place my network behind a firewall [FreeBSD BASED]. What i have Done! I have 2 Nic in the BSD PC. vr0, vr1. Both on the same subnet eg. vr0 - 192.168.0.1 , vr1 - 192.168.0.2. I Plug the Ethernet Cable From the DSL modem Into my vr0 interface. I Plug the Ethernet Cable from the SWITCH into my vr1 interface. I am running ipnat as follows. ipnat.rules map vr0 192.168.0.0/24 -> 0.0.0.0/32 proxy port ftp ftp/tcp map vr0 192.168.0.0/24 -> 0.0.0.0/32 portmap tcp/udp 4:6 map vr0 192.168.0.0/24 -> 0.0.0.0/32 --- Here are some messages i get from my /var/log/messages. Jun 20 22:47:36 pizzaboys kernel: arp: 192.168.0.198 is on vr0 but got reply from 00:08:74:4f:57:c5 on vr1 Thank You, Stephan Weaver [EMAIL PROTECTED] _ Express yourself instantly with MSN Messenger! Download today it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" You must delete the routes for the network from both interfaces and add individual host routes to the interfaces. Suppose you have a cable modem on vr0 add a host route for that Ip and assign it to vr0 interface and add the rest of the hosts in your lan in vr1 interface. Or you can choose a different network or subnet the same ip block Cheers, - Sarath ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: 2 Nic on same subnet.
Ok what i did was change the ip of the dsl modem and on the vr0 interface. works except for this message Jun 21 01:11:12 pizzaboys kernel: arp: 192.168.1.1 is on lo0 but got reply from 00:02:44:8f:3d:90 on vr1 Jun 21 01:12:13 pizzaboys kernel: arp: 192.168.1.1 is on lo0 but got reply from 00:02:44:8f:3d:90 on vr1 From: "fbsd_user" <[EMAIL PROTECTED]> Reply-To: <[EMAIL PROTECTED]> To: "Stephan Weaver" <[EMAIL PROTECTED]> Subject: RE: 2 Nic on same subnet. Date: Tue, 21 Jun 2005 14:22:31 -0400 If your ISP is assigning you a IP address in the 192.168.x.x range then your ISP is already NAting you. You will have to NAT your own LAN users also. To keep things simple use some IP range in the 10.0.0.0 range for your LAN NATing. There is no need to bridge anything. It would be helpful if you explained your overall network. If you follow the FreeBSD Install guide it will walk you though the configuration of private LAN off your FreeBSD box that is connected to public internet. The Install guide is here www.a1poweruser.com -Original Message- From: Stephan Weaver [mailto:[EMAIL PROTECTED] Sent: Tuesday, June 21, 2005 2:02 PM To: [EMAIL PROTECTED] Subject: RE: 2 Nic on same subnet. now lets say vr0 is now 192.168.1.1 will i have to bridge connections? >From: "fbsd_user" <[EMAIL PROTECTED]> >Reply-To: <[EMAIL PROTECTED]> >To: "Stephan Weaver" <[EMAIL PROTECTED]> >Subject: RE: 2 Nic on same subnet. >Date: Tue, 21 Jun 2005 13:57:25 -0400 > >you can not do that. have to be different subnets. >now NIC wired to switch is your private LAN use 192.168.2.2 > >-Original Message- >From: [EMAIL PROTECTED] >[mailto:[EMAIL PROTECTED] Behalf Of Stephan >Weaver >Sent: Tuesday, June 21, 2005 1:42 PM >To: freebsd-questions@freebsd.org >Subject: 2 Nic on same subnet. > > >Hello All, > >I am trying to place my network behind a firewall [FreeBSD BASED]. > >What i have Done! > >I have 2 Nic in the BSD PC. >vr0, vr1. >Both on the same subnet eg. >vr0 - 192.168.0.1 , vr1 - 192.168.0.2. > >I Plug the Ethernet Cable From the DSL modem Into my vr0 interface. >I Plug the Ethernet Cable from the SWITCH into my vr1 interface. > >I am running ipnat as follows. >ipnat.rules > >map vr0 192.168.0.0/24 -> 0.0.0.0/32 proxy port ftp ftp/tcp >map vr0 192.168.0.0/24 -> 0.0.0.0/32 portmap tcp/udp 4:6 >map vr0 192.168.0.0/24 -> 0.0.0.0/32 > > >--- >Here are some messages i get from my /var/log/messages. >Jun 20 22:47:36 pizzaboys kernel: arp: 192.168.0.198 is on vr0 but >got reply >from 00:08:74:4f:57:c5 on vr1 > > >Thank You, Stephan Weaver >[EMAIL PROTECTED] > >_ >Express yourself instantly with MSN Messenger! Download today it's >FREE! >http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ > >___ >freebsd-questions@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-questions >To unsubscribe, send any mail to >"[EMAIL PROTECTED]" > _ FREE pop-up blocking with the new MSN Toolbar - get it now! http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/ _ FREE pop-up blocking with the new MSN Toolbar - get it now! http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: 2 Nic on same subnet.
On Tue, Jun 21, 2005 at 01:42:21PM -0400, Stephan Weaver wrote: > Hello All, > > I am trying to place my network behind a firewall [FreeBSD BASED]. > > What i have Done! > > I have 2 Nic in the BSD PC. > vr0, vr1. > Both on the same subnet eg. > vr0 - 192.168.0.1 , vr1 - 192.168.0.2. Why? 192.168 subnets are far too cheap to try to kludge something like this to work. Just move your internal switched network to something like 192.168.1.0/24. -- David Kelly N4HHE, [EMAIL PROTECTED] Whom computers would destroy, they must first drive mad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
