On Sep 10, 2006, at 12:36 PM, Joe wrote:
Jason Dixon wrote:
On Sep 10, 2006, at 4:31 AM, Joe wrote:
Andreas Bihlmaier wrote:
<snip>
I have the same problem with this board:
cpu0: VIA Esther processor 1500MHz ("CentaurHauls" 686-class)
1.50 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,CMOV,PAT,CFLUS
H,ACPI,MMX,FXSR,SSE,SSE2,TM,SBF,SSE3,EST,TM2
The problem is not dc(4) specific, it seems the board can't
handle pci
bridges, so far I tested dual nics: fxp, tl, sf, none of them
seems to
work, they all lock up the box as soon as I up more than one of the
interfaces.
Thanks for the reply. This is disappointing. I really wanted to
use this board as my new firewall/vpn.
So, my advice for now is to stay away from the new VIA EN or CN
series boards with the C7 processor for use as multihomed firewalls.
I still don't understand why some folks avoid using VLANs in these
circumstances. You can get very creative with physical
interfaces, trunk(4), and vlan(4). It's pretty rare these days
that you actually *need* dual/quad cards.
I was under the impression that VLANs were never meant to provide
any security and that VLAN "hopping" was possible. The thought did
cross my mind to use VLANs though.
VLAN hopping is possible if you don't know how to configure your
switch properly. Just like hacking my OpenBSD box is possible if I
leave the root password blank and give them the key to my server room.
--
Jason Dixon
DixonGroup Consulting
http://www.dixongroup.net
