If you have several public IP's available, why not use one LEAF box (with one of the public IP's) to protect the school LAN and another LEAF box (on a second public IP) to protect the private LAN?
I assume you want to use several public IP's on the LEAF box in front of the private LAN and do NAT to the boxes behind? That way each can have an individual public IP for web purposes? I'm not entirely clear on why you want them in 'series' rather than 'parallel'... Brock > Message: 1 > From: "Craig" <[EMAIL PROTECTED]> > To: "LEAF" <[EMAIL PROTECTED]> > Date: Thu, 3 Oct 2002 09:29:38 -0700 > Subject: [leaf-user] Bering VPN questions-School project > > Hi folks, > At our high school, we have some extra, public IP addresses. > For a project, I want to set up 2 Bering boxes. I want to use > our extra public IP addresses and have the internet traffic > to these addresses "flow through" the first Bering box to the > final Bering box which will service several boxes on a LAN. > In between the two Bering boxes is the school LAN, which I > (obviously) need to safeguard, so I'm thinking that I need to > create a VPN between the two Bering boxes and have all > traffic "tunnel" through??? The purpose is to set up boxes on > the internal private student LAN that students can access > from home, etc. by using the public IP addresses (We want > them to experiment with creating web sites and experience, > invariably, getting "hacked", etc. while protecting the > existing school LAN). > > Internet-----Bering Box 1----(School LAN)-----Bering Box > 2-----Private Student LAN > > 1.) This should be pretty easy to do with Bering, shouldn't it? > 2.) Will the internal school LAN be effectively protected by > creating a VPN between the two boxes? > 3.) Any problems with my scenario that you can see? Comments, > suggestions...??? (I welcome ALL thoughts and suggestions) > > Thank you, > Craig ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
