RE: [SLUG] multihomed machine.

Mon, 21 Aug 2000 20:21:16 -0700 

I would (as I have at work) add 2 physical NICS as it's cheap and fully
firewalls the internal from the external.

Having 1 network card means that if not setup properly, people can NAT
through the router whithout going through Squid or whatever. I'm pretty sure
your router should be able to do NAT (unless it's real cheap or old or
something).

Also my advice with Squid is to compile it yourself if you intend to do
bandwidth control and so on... I had to scrap my RPM and go with tha tar.gz
verion.

-----Original Message-----
From: Brock Henry [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, 22 August 2000 1:07
To: [EMAIL PROTECTED]
Subject: Re: [SLUG] multihomed machine.


Firstly thanks to everyone who answered :)

>but, i can't see why you would want to bind one routable and one
>unroutable address to the one card...  :-?

Well I have run short of IP Addresses, I only have a measly C Class, and 
need more, so I am going to make a private range, existing on the same 
ethernet segment, NAT'd or Squid'ed (haven't decided) to the registered 
addresses, including internet.

The NAT/squid machine is the one with the two ip addresses obviously.

This will also allow me some control over what they access, as some will 
only have access to one webserver. Now that I think about it I could 
multihome the webserver as well (AIX) but I don't think I want to go that
way.

Our internet router won't route any of the 10.10.n.n packets.

Any flaws in my plan?

Brock Henry

At 12:24 22/08/2000 +1000, you wrote:
> > Can I have two IP Addresses on one machine, a registered 203.n.n.n and a
> > private 10.10.n.n for example?


>but, i can't see why you would want to bind one routable and one
>unroutable address to the one card...  :-?

*************************************************************************
Brock Henry - [EMAIL PROTECTED] (H) - [EMAIL PROTECTED] (W)

Adventure? Excitement? A Jedi craves not these things.
************************************************************************* 



--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug


--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug

Reply via email to