Tom Eastep wrote: > Watanabe Anderson wrote: >> Hello, >> >> >> >> I have a question. >> >> >> I'll configure a new Shorewall, but this time, I'll use a DSL modem with >> PPPoE. >> >> 1. The DSL modem is connected on eth0 >> 2. I have 16 publics IPs, and need to use 6 IPs. (eth0:1 ~ eth0:6) > > I think that you will just confuse yourself by assigning the IP > addresses to eth0 since no IP traffic will ever go through eth0. Why do > you want to add them to your firewall at all? Your ISP must route all of > these addresses through the PPP no matter if you add them to your > firewall or not. So there is really no point in defining them on the > firewall. > > The only reason that you add additional addresses to an interface is so > that your system will respond to ARP requests for those addresses; with > PPP, there is no ARP.
Actually, there is another reason -- you may want to have applications running on the firewall bind to one of those addresses. If that is the case in your environment, I would add them to another interface besides eth0 -- possibly lo or even a dummy interface. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ OpenSolaris 2009.06 is a cutting edge operating system for enterprises looking to deploy the next generation of Solaris that includes the latest innovations from Sun and the OpenSource community. Download a copy and enjoy capabilities such as Networking, Storage and Virtualization. Go to: http://p.sf.net/sfu/opensolaris-get
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
