[NTLUG:Discuss] How to make Linux server transparent to internal machines?

Neil Aggarwal neil at JAMMConsulting.com
Sat Jun 1 00:27:04 CDT 2002 

Tom:

I like your idea of using iptables to map my public IP
addresses to private ones.

Does anyone have any information on how to do that
on RedHat 7.3 using iptables?

Thanks,
	Neil.

--
Neil Aggarwal
JAMM Consulting, Inc.    (972) 612-6056, http://www.JAMMConsulting.com
Custom Internet Development    Websites, Ecommerce, Java, databases


> -----Original Message-----
> From: discuss-admin at ntlug.org [mailto:discuss-admin at ntlug.org]On Behalf
> Of Tom Woody
> Sent: Friday, May 31, 2002 3:51 PM
> To: discuss at ntlug.org
> Subject: Re: [NTLUG:Discuss] How to make Linux server transparent to
> internal machines?
> 
> 
> Why the need to use the static addresses?  If you are going to 
> firewall them just NAT the machines behind a single ip.... 
> 
> Another option would be to assign all the static addresses to the 
> firewall, and redirect 
> acceptable packets through the firewall to a specific machine.
> 
> Internet------Firewall-----------------------------+--------------
> -+-------------------+
>            234.234.234.234----redirects to--> 192.168.1.234       
>  |                   |
>            234.234.234.235----redirects 
> to-------------------->192.168.1.235           |
>            234.234.234.236----redirects 
> to--------------------------------------->192.168.1.236
> 
> Not the prettiest but it would work (not exactly sure how to do 
> this with IPTABLES/IPCHAINS - as I use OpenBSD PF for my firewalls)
> 
> On Fri, 31 May 2002 13:31:00 -0500
> "Neil Aggarwal" <neil at JAMMConsulting.com> wrote:
> 
> > Hello:
> > 
> > I have a block of static IP addresses on which I want to run
> > several Windows machines.
> > 
> > Since I want to have a firewall, I was thinking of using 1 IP
> > address for a linux server that will act as a firewall for
> > the entire setup.
> > 
> > So, here is a diagram:
> > 
> >   [Internet] -- [Linux Server] -- switch -- [Internal machines]
> > 
> > The linux server and the internal machines all have static
> > IP addresses which are public to the Internet.
> > 
> > How can I set-up routing so the Linux server is "transparent"
> > to the other machines?
> > 
> > Thanks,
> > 	Neil.
> > 
> > --
> > Neil Aggarwal
> > JAMM Consulting, Inc.    (972) 612-6056, http://www.JAMMConsulting.com
> > Custom Internet Development    Websites, Ecommerce, Java, databases
> > 
> > 
> > _______________________________________________
> > http://www.ntlug.org/mailman/listinfo/discuss
> 
> 
> -- 
> Tom Woody
> Systems Administrator
> NationWide Flood Research, Inc.
> phone: 214-631-0400 x209
>   fax: 214-631-0800
> 
> If you have any trouble sounding condescending,
> find a Unix user to show you how it's done.
> 		--Scott Adams
> 
> 
> _______________________________________________
> http://www.ntlug.org/mailman/listinfo/discuss

More information about the Discuss mailing list