yes, this ia a more CLEAR example of how to do it... thankx for this details, maybe now M will figure out his situation... Do you know about SMC as well? I have some small model and was wondering if I should use it instead of a linux machine, since I have only 2 computers in a remote place and kind of tight up with computers to use for that. He seems knowing some stuff, of course NAT and such, but DNAT I have not seen in its config. Could that be done by other ways, if he does not have a specific setting for that? It has java software for its webface, and have seen the normal ports listed, but other ports not.
anyway I should look at the model and let you know, but do not rush, if you don't have time, I want to try anyhow a software solution b4. :o) Pe 18 Feb 2005, la 14:45, Vinay Shukla <[EMAIL PROTECTED]> a scris: > >Actually depending on who was providing the Cisco - ISP or yourself, >then the issue becomes one of what features are enabled. > >1) The Cisco could be set up in NAT mode. Your current external IP >address will route all traffic to a specific IP address that is NAT i.e. >The internal side of the Cisco will already have an IP address of say >192.168.1.1 and so your MNF public will be 192.168.1.2 > >2) The Cisco could be setup in Bridge mode - the public IP will be >available to you on the MNF external NIC. > >3) The ISP may be providing 1 IP address as available meaning that is >the IP address of the MNF external NIC. > >I have used all the above modes, for various reasons so they are all >possible. > >Hope this helps. >Vinay. > > > >-----Original Message----- >From: [EMAIL PROTECTED] >[mailto:[EMAIL PROTECTED] On Behalf Of Massimo >Caranchini >Sent: Friday, February 18, 2005 6:35 AM >To: [email protected] >Subject: R: [Security Firewall] Only 1 Public IP > > >OK, but the public ip is normally assigned to the router and then the >router is connected to the first nic (wan) >Ex:=20 >public 172.10.10.23 - Subnet; 255.255.255.255 >Internal lan: 192.168.1.xx Subnet 255.255.255.0 > >What address / S.Mask should I set to the first nic? > >How can I set the router to forward all packet to the address assignet >to the first nic ? > >Tks! > > >-----Messaggio originale----- >Da: Adrian RADU [mailto:[EMAIL PROTECTED] >Inviato: venerd=EC 18 febbraio 2005 11.17 >A: [email protected] >Oggetto: Re: [Security Firewall] Only 1 Public IP > >well, I'm not an expert but is basically like this: >let's say u have: >eth0 - first nic >eth1 - second nic > >So you CHOOSE which nic you get the cable from CISCO to that chosen nic. >Then IP public u assign to this, and it will be WAN address. Second nic >you give for example an address in this range: >192.168.*.* >This can be used for LAN. >So in here you plug cable that goes after to your INTERNAL SWITCH so you >can give access to your internal LAN. On every station on your internal >LAN you must declare the second nic >192.168.*.* that you choose before to be the GATEWAY for this stations. >Then of course you put DNS from the ISP that gives you internet (wan >access). > >In MNF you can find the section to declare the: >ZONES - for example NET means internet or WAN place, LOCAL means >internal LAN INTERFACES - declare WHICH eth* you assign to which ZONE >RULES - here comes the real rules for your access by the MNF > >Then of course there is a section that tells you to use NAT (for >example) so you can get the 'transparency' you wish and so connect from >LAN stations to internet and viceversa. > >However Florin, is the BEST advisor in this, since he takes care of MNF >and established this very forum. > >hope it was of some help 2 u my idea > >Pe 18 Feb 2005, la 09:53, Massimo Caranchini ><[EMAIL PROTECTED]> a scris: > >>Hi all, >>=20 >>I have only 1 Public IP that is assigned to the router (Cisco SOHO 77) >>=20 >>How can i configure MNF with two nic ? >>=20 >>What kind of address can i use for the wan nic ? >>How can i configure the router to be "transparent" ? And what=20 >>"internal" address to assign to the router ? >>=20 >>Many thanks in advance. >>=20 >>Massimo Caranchini >>=20 >> > > > > > > > >
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
