VLAN na FreeBSD

P Sedo pese27 at mysun.com
Fri Aug 2 21:44:39 CEST 2002


Dobry den.

V predchadzajucom maile som trosku zmatkoval.
Chcem sa opytat na toto:

mam na 3com switchi nastavene 3 VLAN (dostal som tak 3 oddelene siete)
 kedze mam len 2 sietove karty a pripojenie do okolnych sieti je cez
jednu z tych kariet, musel som nastavit tzv. VLAN 802.1Q tagging na to,
aby som mohol zdielat jeden port v switchi pre vokajsiu a jednu vnutornu
siet.

   /-------\
   |  xl0->|-> vn. siet c.1 (192.168.10.1)
   |       |
   |  xl1->|-> vn. siet c.2 (192.168.20.1)+ vonkajsia siet 
   \-------/

xl0 - porty 1-13
xl1 - porty 13-24 + 25(ten na vonka)
xl1 - port 26(vonka)

ipf mam len tak aby to zatial chodilo:

loopback vsetko
xl0:
pass in quick on xl0 from 192.168.10.0/24 to any
block in on xl0 all
pass out on xl0 all
xl1:
pass in quick on xl1 from any to <VONKAJSIA ADRESA XL1> 
pass in quick on xl1 from 192.168.20.0/24 to 192.168.20.1/32
block in on xl1 all
pass out quick on xl1 from <VONKAJSIA ADRESA XL1> to <vonkajsia siet>
pass out quick on xl1 from 192.168.20.1/32 to 192.168.20.0/24
block out on xl1 all

bezi mi tam squid pocuvajuci na tych dvoch vnutornych rozhraniach a 
ipnat je:

map xl1 192.168.20.0/24 -> 0/32
map xl1 192.168.10.0/24 -> 0/32

alias mam  na tej xl1 na vonkajsiu net adresu s 255.255.255.255

Problem, je len v tom, ze na tu zdielanu VLAN 802.1Q siet si ani netuknem.

Viete teraz prosim pomoct?

Ako robi to LSD s VLAN? man vlan(4) ma bohvieako mudrym neurobilo.


PeSe


***************************
PeSe
***************************




More information about the Users-l mailing list