[NTLUG:Discuss] How to make Linux server transparent to internal machines?
Tom Woody
woody at nfri.com
Fri May 31 15:51:19 CDT 2002
Why the need to use the static addresses? If you are going to firewall them just NAT the machines behind a single ip....
Another option would be to assign all the static addresses to the firewall, and redirect
acceptable packets through the firewall to a specific machine.
Internet------Firewall-----------------------------+---------------+-------------------+
234.234.234.234----redirects to--> 192.168.1.234 | |
234.234.234.235----redirects to-------------------->192.168.1.235 |
234.234.234.236----redirects to--------------------------------------->192.168.1.236
Not the prettiest but it would work (not exactly sure how to do this with IPTABLES/IPCHAINS - as I use OpenBSD PF for my firewalls)
On Fri, 31 May 2002 13:31:00 -0500
"Neil Aggarwal" <neil at JAMMConsulting.com> wrote:
> Hello:
>
> I have a block of static IP addresses on which I want to run
> several Windows machines.
>
> Since I want to have a firewall, I was thinking of using 1 IP
> address for a linux server that will act as a firewall for
> the entire setup.
>
> So, here is a diagram:
>
> [Internet] -- [Linux Server] -- switch -- [Internal machines]
>
> The linux server and the internal machines all have static
> IP addresses which are public to the Internet.
>
> How can I set-up routing so the Linux server is "transparent"
> to the other machines?
>
> Thanks,
> Neil.
>
> --
> Neil Aggarwal
> JAMM Consulting, Inc. (972) 612-6056, http://www.JAMMConsulting.com
> Custom Internet Development Websites, Ecommerce, Java, databases
>
>
> _______________________________________________
> http://www.ntlug.org/mailman/listinfo/discuss
--
Tom Woody
Systems Administrator
NationWide Flood Research, Inc.
phone: 214-631-0400 x209
fax: 214-631-0800
If you have any trouble sounding condescending,
find a Unix user to show you how it's done.
--Scott Adams
More information about the Discuss
mailing list