Jump to content

This is the support site for Andrews & Arnold Ltd, a UK Internet provider. Information on these pages is generally for our customers but may be useful to others, enjoy!

FireBrick Traffic Shaping: Difference between revisions

FireBrick Traffic Shaping (view source)

Revision as of 15:28, 11 February 2011

692 bytes added ,  11 February 2011
→‎Proxy-arp Mode
==Proxy-arp Mode==
If you want the Firebrick to be 'invisible' on your LAN, ie, you have machines on the LAN which use the gateway IP of your router, and you do not want to use the FireBrick as the router, then setting proxy-arp on the subnets is required. - this will then proxy arps between the FireBricks LAN and WAN, both ways. -Note broadcast traffic is not passed through the FireBrick - so the router won't be able to do DHCP - the FireBrick can, or another host on the LAN can instead.
 
Here is a config snipet where physical ports are as follows:
*1 for the WAN, plugged in to the internet router
*2 for the LAN, plugged in to the network
*3 and 4 are unused.
 
In terms of IP addressing on the network:
*192.0.2.1 is the Internet router
*192.0.2.245 has been assigned to the FireBrick
*192.0.2.2-253 is used for the various clients on the LAN
 
<syntaxhighlight>
<port name="WAN" ports="1"/>
<port name="LAN" ports="2"/>
<interface name="WAN" port="WAN">
<subnet ip="192.0.2.254/24" gateway="192.0.2.1" proxy-arp="true"/>
</interface>
<interface name="LAN" port="LAN">
<subnet ip="192.0.2.254/24" proxy-arp="true"/>
</interface>
</syntaxhighlight>
AA-Andrew
autoreview, Bureaucrats, editor, Interface administrators, reviewer, Administrators
12,274

edits

Retrieved from ‘http://support.aa.net.uk/Special:MobileDiff/630