[Shorewall-newbies] One range and 2 network adapters
teastep at shorewall.net
Fri Feb 13 15:52:11 PST 2004
On Friday 13 February 2004 02:52 pm, Tom Eastep wrote:
> On Friday 13 February 2004 11:40 am, mollo wrote:
> > Hello List,
> > This is surely not a Shorewall issue, but permit I post my problem.
> > Assume my ISP gave me 32 Ips : 126.96.36.199/27.
> > I've _not_ other IP's, like a DSL router in another network!
> > Address: 188.8.131.52
> > Netmask: 255.255.255.224 = 27
> > Wildcard: 0.0.0.31
> > =>
> > Network: 184.108.40.206/27 (Class C)
> > Broadcast: 220.127.116.11
> > HostMin: 18.104.22.168
> > HostMax: 22.214.171.124
> > Hosts/Net: 30
> > I would setup a 3 card Firewall :
> > eth0: 126.96.36.199 (net)
> > eth1: 188.8.131.52 (dmz)
> > eth2: 192.168.x.x (loc)
> > What's the way to have a correct routing between eth0 and eth1 without
> > splitting in subranges ? If there is a solution.
> > If I define my card like follow :
> > eth0: 184.108.40.206/27 gateway .97
> No -- 192.168.1.98/32 gateway .97 and add a host route to .97.
> > eth1: 220.127.116.11/27 gateway .98
Also, no need to define a gateway on that interface. Hosts in your DMZ will
use .99 as their gateway.
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep at shorewall.net
More information about the Shorewall-newbies