It's also possible to use static-NAT, or proxy-arp in this environment. While only two of the 3 IP's can be used directly on DMZ machines, you can still port-forward services from the router's public IP to machines on the DMZ.
Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ----- Original Message ----- From: "Ed Tetz" <[EMAIL PROTECTED]> To: "GREGOR" <[EMAIL PROTECTED]>; "linux-router" <[EMAIL PROTECTED]> Sent: Tuesday, January 15, 2002 6:47 AM Subject: Re: [Leaf-user] multi ip port forwarding > Hi Gregor, > > I know that I had some issues with this. I had 2 alias address bound to my > external interface. I was able to receive traffic on them and portfw them > correctly. But then I tried FTP and I found that all other outbound traffic > gets masq'd on the primary IP, not the alias. From what I read at the time, > that is just how it is, and you cannot masq out with the alias IP. That also > gave me a problem with my Dynamic DNS, as it would register the primary, and > not the alias address. > > This might give you a problem with SMTP, but I wouldn't think that it should > affect the Web, and Pop components. > > I hope that helps a bit. > > Cheers > ----- Original Message ----- > From: "GREGOR" <[EMAIL PROTECTED]> > To: "linux-router" <[EMAIL PROTECTED]> > Sent: Tuesday, January 15, 2002 1:18 AM > Subject: [Leaf-user] multi ip port forwarding > > > > I've been trying to install dachstein-cd-v1.0.2 but it doesn't seems to > > work. I wonder if any of you could help me to configure *network.conf* > file > > to fit my needs. > > Here's my situation : > > |internet (eth0) > > | ip_legal1 + ip_legal2 + ip_legal3 > > ----------------- > > | | > > | dachstein cd | > > | |---- DMZ (eth2) > > | | > > ----------------- > > | > > | > > internal network (eth1) > > > > ip_legal1,ip_legal2,ip_legal3 are running services on port 25,80,110 and > > will be forwarded to the DMZ. like this: > > > > ip_legal1 (port 25,80,110) port forwarded to 192.168.15.200 > > ip_legal2 (port 25,80,110) port forwarded to 192.168.15.201 > > ip_legal3 (port 25,80,110) port forwarded to 192.168.15.202 > > > > All clients will use *internal network (eth1)* as their gateway to browse > > the internet. > > > > please help and thanks in advance. > > > > > > regards, > > Gregor > > > > > > +Gregor Gede W. > > +CENTER FOR INFORMATION SYSTEM > > +ATMA JAYA YOGYAKARTA UNIVERSITY > > [EMAIL PROTECTED] > > +62 81 2271 0583 > > +62 81 7467 518 > > > > WATCHOUT! 3RD INTERNATIONAL SEMINAR ON SUSTAINABLE ENVIRONTMENTAL > > ARCHITECTURE + DIGITAL ARCHITECTURE, 9-10 MARCH 2002, YOGYAKARTA > > http://senvar.virtue.nu or http://senvar.uajy.web.id _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
