>Basically I want to MASQ a subset of computers through a different IP
>address. I want to use aliases because they are all routing through
>the same subnet, and I'd like the solution to be scalable beyond
>n-1, where n is the # of PCI slots free, or in my case n-2, since
>there is a third network involved.
Be careful here, you are using the word "subnet" incorrectly.
A subnet is only a IP network running with a "subnet" mask of say
255.255.255.0. When you put another IP network on the same wire,
you are then putting (2) subnets on the same collision
domain (single ethernet hub, etc).
Please keep in mind that having about 254 hosts on a single lightly
loaded Ethernet network is ok. If its heavily used, you shouldn't
have more than about 128 hosts on each network or "broadcast domain".
Also.. if the network is heavily used, you should never have the
ethernet network running more than about 60% utilization. If
it goes much over that, you will have collision storms, etc. Then
you need to either get a Ethernet SWITCH or segment your network
into smaller peices.
>So far, using IPchains and IPmasqadm, there have been no problems,
>but I also need iproute2 to work with aliases, and that might be a
>snag. In short, the plan is to use source based routing to route the
>subset to the desired aliased port. If anyone has any experience
>with the package or doing something similar I'd like to hear.
I beleive Keith's IPROUTE program won't run on aliased interfaces.
I'm not sure about that one though. Ask him.
--David
.----------------------------------------------------------------------------.
| David A. Ranch - Linux/Networking/PC hardware [EMAIL PROTECTED] |
!---- ----!
`----- For more detailed info, see http://www.ecst.csuchico.edu/~dranch -----'
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
http://tiffany.indyramp.com/mailman/listinfo/masq
Admin requests can be handled by web (above) or [EMAIL PROTECTED]
