Re: net.link.ether.bridge.config effeciency for more then 2 interfaces? [solved of sorts]

2006-03-25 Thread Andrew Seguin
Andrew Seguin wrote: I'm trying to get a vlan based firewall working, but having a problem with ARP & DHCP not working well (dhcp could be maybe not working well because of ARP) The network is setup: IP: xyz.zyx.xzy.0/24 [ISP router -> ISP Switch] -> firewall ->{vlans-tagge

net.link.ether.bridge.config effeciency for more then 2 interfaces?

2006-03-23 Thread Andrew Seguin
I'm trying to get a vlan based firewall working, but having a problem with ARP & DHCP not working well (dhcp could be maybe not working well because of ARP) The network is setup: IP: xyz.zyx.xzy.0/24 [ISP router -> ISP Switch] -> firewall ->{vlans-tagged}->layer2 switch->other switches (I don't

Network card selection / recommendations ?

2006-02-27 Thread Andrew Seguin
Sorry for distracting with such a question as to recommendations as to network cards, but since I'm planning on upgrading a freebsd firewall (currently running 5.4-STABLE), I'll check with those who know the best! At the moment I have a firewall/router based on three fxp intel nics (a cheap si

Freebsd NAT/Router design question/issue

2005-04-08 Thread Andrew Seguin
Good day, I've built up a freebsd router (no problems there) using 5.4-STABLE built after a cvsup 3 days ago. The router has three network cards (all fxp), and it routes mainly between a variety of subnets (using vlans) on fxp1, to a seperate subnet on fxp0. fxp2 has a private address (192.168.0.

RE: Weird situation

2005-01-23 Thread Andrew Seguin
e the two nics bridged)? Maybe using ipfw to forward the traffic by MAC address? I'm going to sleep on it, anybody with advice would receive my full gratitude! Andrew -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Andrew Seguin Sent: Sunday, January 2

Weird situation

2005-01-23 Thread Andrew Seguin
Here I am again, experimenting with FreeBSD on the network. My last questions here helped me get a firewall to help our network. Now, I have a test setup in a virtual environment… but I have a problem. (why else would I be writing here then?). At the moment I have no clue what to even look up on

RE: Network accounting

2005-01-17 Thread Andrew Seguin
-Original Message- From: Mitch (Bitblock) [mailto:[EMAIL PROTECTED] Sent: Monday, January 17, 2005 10:51 PM To: 'Andrew Seguin'; freebsd-net@freebsd.org Subject: RE: Network accounting [Mitch says:] you could also use a simple PERL program to parse the output from your ipfw co

RE: Network accounting

2005-01-17 Thread Andrew Seguin
ECTED] Sent: Monday, January 17, 2005 10:49 PM To: Andrew Seguin; freebsd-net@freebsd.org Subject: Re: Network accounting On Mon, 17 Jan 2005 22:41:16 +0100, Andrew Seguin <[EMAIL PROTECTED]> wrote: > >What I was doing with the same setup: > >$IPFW pipe 1 config mask src-ip 0xf

RE: Network accounting

2005-01-17 Thread Andrew Seguin
-Original Message- From: Jon Simola [mailto:[EMAIL PROTECTED] Sent: Monday, January 17, 2005 10:27 PM To: Andrew Seguin; freebsd-net@freebsd.org Subject: Re: Network accounting ... >What I was doing with the same setup: >$IPFW pipe 1 config mask src-ip 0x buckets 512 >$IP

RE: Network accounting

2005-01-17 Thread Andrew Seguin
-Original Message- From: Mitch (Bitblock) [mailto:[EMAIL PROTECTED] Subject: RE: Network accounting ... [Mitch says:] Just a thought: http://rtg.sourceforge.net ? hth If I understand this correctly... I'd have to add SNMP to the server and rtg would then poll via SNMP, storing th

Network accounting

2005-01-17 Thread Andrew Seguin
I’ve searched Google, I’ve searched through the FreeBSD-net archives and have gotten a few leads to what I’m seeking, but unfortunately, nothing solid enough for me to go off of (so yes, I’ve been doing some homework first! ;) ) But, here’s my situation. A dedicated FreeBSD transparent firewall

RE: FW: Curiosity in IPFW/Freebsd bridge. [more] 802.1q VLAN at fault?

2004-12-26 Thread Andrew Seguin
My apologies for not replying sooner. However, a few days before Christmas, I got the time to make the test and the news is... it works. A small curiosity however is that I had problem with the 'promisc' flag being turned off. I ended up creating a small startup script to set the sysctl and confi

RE: FW: Curiosity in IPFW/Freebsd bridge. [more] 802.1q VLAN at fault?

2004-12-17 Thread Andrew Seguin
A. Kritsky [mailto:[EMAIL PROTECTED] Sent: Friday, December 17, 2004 1:42 PM To: Andrew Seguin Cc: [EMAIL PROTECTED] Subject: Re: FW: Curiosity in IPFW/Freebsd bridge. [more] 802.1q VLAN at fault? Hello Andrew, Friday, December 17, 2004, 12:47:46 PM, Andrew Seguin wrote: ... I cannot say for sure,

FW: Curiosity in IPFW/Freebsd bridge. [more] 802.1q VLAN at fault?

2004-12-17 Thread Andrew Seguin
My apologies: Sometimes I feel just so stupid... hitting reply replies to me instead of the list. Ooops! -Original Message- From: Andrew Seguin [mailto:[EMAIL PROTECTED] Sent: Friday, December 17, 2004 10:16 AM To: 'Andrew Seguin' Subject: RE: Curiosity in IPFW/Freebsd bridge.

Curiosity in IPFW/Freebsd bridge.

2004-12-16 Thread Andrew Seguin
try this yet (11:50pm local time!) since I don’t remember which fxp card is facing internal/external and so I will try in the morning. Again, many thanks! Andrew Seguin -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.296 / Virus Database: 265.5.4 - Rele

RE: FreeBSD 5.3 Networking performance problem

2004-11-29 Thread Andrew Seguin
Thank you for your reply. > Note that if your interface is set to full duplex and the switch is > set to half, you'll see lousy performance and very likely see no > errors on your side. I have to question though... could this explain a stable ping time of 2ms when the load is around 2-4mbps and u

RE: FreeBSD 5.3 Networking performance problem

2004-11-29 Thread Andrew Seguin
Deep thanks to both of you have replied to date, showing me the poor quality of the Realtec chipset (which btw, was on a D-Link card?). Today, once back on campus, I have tested with the one functional card I could find of different chipset (some no-brand-name card that comes up as 'dc' under Fre

FreeBSD 5.3 Networking performance problem

2004-11-26 Thread Andrew Seguin
*Problem: Poor performance for freebsd transparent gateway. *Situation: I need to install a simple firewall for a school network I am administering. We have about 100 computers active, generating a stream of approximately 80-90K packets per minute for a load I estimate* to be a little under 10Mbp