ok easy answer - get a fourth NIC, put it on the 192.168.1.50 net and use it to NAT out to the internet. When you bridge interfaces they are consumed and not available for anything other than the bridge.
2 NICs bridge 192.168.1.50 and 192.168.1.60 (if your doing a bridge, they will look like one subnet) 2 NICs for NAT from 192.168.1.60 to the Internet - firewall has an IP address on the Internet. there may be less simple ways to do this - tunnels and stuff, but with card at $15 - go with cheap and easy! -----Original Message----- From: Stephen Gutknecht (OBSD-PF) [mailto:[EMAIL PROTECTED] Sent: Sunday, March 09, 2003 10:11 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: wireless interface sharing same subnet as wired Ok, let me start over. What I want to be able to do is share a single IP subnet between two private network interfaces. Client 1: ethernet cable. 192.168.1.50 / mask 255.255.255.0 Cleint 2: wireless 192.168.1.60 / mask 255.255.255.0 With a 3-interface OpenBSD firewall in between the two. The fireall would bridge the ethernet and wireless so that both clients could connect directly to each other (ping or otherwise). And both clients would NAT out the same common public interface. The wireless network would use enhanced WEP + mac filtering for security. Not perfect, but suitable for the intended application. Stephen -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Saturday, March 08, 2003 11:51 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: wireless interface sharing same subnet as wired I think you will need to run DHCP for your wireless (or some other 'infrastructure'daemons) on your PRIVnet, filter these ports from the PUBnet - but then just treat the wi0 as part of your internal network for NAT - when you say bridge you don't mean 'transparent bridge' right? I don't think that works with NAT. um no. -----Original Message----- From: Stephen Gutknecht (OBSD-PF) [mailto:[EMAIL PROTECTED] Sent: Saturday, March 08, 2003 8:45 AM To: [EMAIL PROTECTED] Subject: wireless interface sharing same subnet as wired Hi, Is there a way with OpenBSD 3.2 to "bridge" the wireless and wired interface. I have a 3-leg firewall: wi0 - private wireless fxp0 - public interface fxp1 - private interface I have seen Linux and WinXP firewalls that allow you to bridge the private and wireless interface to allow a single IP subnet. Also need to NAT on the public interface for both private interfaces. Any suggestions on how to configure this with OpenBSD 3.2? Thank you.
