something through nat - something not

2004-06-23 Thread Tomica Crnek 
Hi everyone, I would appreciate if anyone can help with this:

here is the configuration:
box is connected to one (outside) network with 2 interfaces
box is connected to one (inside) network with one interface
some nodes on outside network do have static routes to inside network, but not whole 
outside net
these nodes that do have routes to inside net pointing to this box use gif/ipsec 
tunnels to route packets to inside net (some kind of vpn)
only subnets behind these few nodes could be routed directly to inside net

what I want to do is to configure it to route packets to these chosen subnets 
directly - no nat, but I want to be able to see entire outside network from inside net 
also. So these packets should be passed to natd. I don't know which outside interface 
will be chosen because both outside interfaces are in dynamic routing backbone.

any suggestion?

thanks!


This mail passed through ZGWireless free network - www.zgwireless.net,
Internet connection sponsored by Iskon Internet d.o.o. - www.iskon.hr

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: something through nat - something not

2004-06-23 Thread Charles Swiger 
On Jun 23, 2004, at 4:27 PM, Tomica Crnek wrote:
box is connected to one (outside) network with 2 interfaces
What does this mean?
what I want to do is to configure it to route packets to these 
chosen subnets directly - no nat, but I want to be able to see 
entire outside network from inside net also.
Standard IP-based routing will move packets from one subnet to another 
subnet, without using NAT.  I'm not sure what you mean by able to see 
in this context, however: are you talking about being able to send IP 
traffic to them, are you talking about having them on the same physical 
subnet by bridging, and thus be able to ARP the hosts even though they 
are on two different logical networks, or what?

So these packets should be passed to natd. I don't know which outside 
interface will be chosen because both outside interfaces are in 
dynamic routing backbone.
Above you said no nat, here you ask about passing some traffic to 
natd.  What are you trying to do?  Do you want to use NAT or not?

Your second comment about which outside interface will be chosen is 
also unclear.  What dynamic routing is going on, and what does the 
topology look like?

--
-Chuck
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]