Hi, I have a network with some servers and a router to the internet. Now I want to put another router between the internet-router and the servers for packet-filtering. It should be absolutely transparent, so that I can take it out or put it in the net whenever I want, without reconfiguring the internet-router or any of the servers. I have tried it with proxy-arp, and it worked once. After the second take out and put in it stops working. The next day it worked again once. Where is the Problem? Is there any way to have such a feature? And is it the right way with proxy-arp? Does anyone have done this before? I use th following commands: Internet Router: x.y.z.193 Netmask: 255.255.255.224 Server: x.y.z.222 echo 1 > /proc/sys/net/ipv4/ip_forward echo 1 > /proc/sys/net/ipv4/conf/all/proxy_arp eth0="eth0" eth1="eth1" /sbin/ifconfig $eth0 down /sbin/ifconfig $eth1 down /sbin/ifconfig $eth0 x.y.z.200 netmask 255.255.255.255 broadcast x.y.z.200 /sbin/ifconfig $eth1 x.y.z.201 netmask 255.255.255.255 broadcast x.y.z.201 /sbin/route add -host x.y.z.193 dev $eth0 /sbin/route add -host x.y.z.222 dev $eth1 /sbin/route add default gw x.y.z.193 dev $eth0 /sbin/arp -i $eth0 -Ds x.y.z.222 $eth0 netmask 255.255.255.255 pub /sbin/arp -i $eth1 -Ds x.y.z.193 $eth1 netmask 255.255.255.255 pub Thank you very much Oliver - To unsubscribe from this list: send the line "unsubscribe linux-net" in the body of a message to [EMAIL PROTECTED]
