@Roy, That is similar with ACL on the router and easy to bypass. Users would be able to sniff LAN, find out MAC and change it together with IP address in the network settings. I would also add mac flooding so the original box would be permanently out of business ;-) The proper solution would be with 3 network cards/physical segregation on that linux box
@Hung, VLAN (openwrt firmware) is an another easiest option for you if you don't like anything above. An old Linksys wrt54g (4 Lan/100) will do. That sounds cheap and good. And of cause it's Linux. You'd need to learn how to white list IP addresses because you will be doing it a lot (clouds, regular network changes, etc). http://www.the-mesh.org/tiki-index.php?page=OpenWRTVlans Cheers, Anton > (a) get a dual-home linux machine ... nothing over powered. a used pc > could also be sufficient so long as you are not paranoid about hardware > failures ... > i.e. mac address A will always get 192.168.1.200 > i.e. mac address B will always get 192.168.1.201 _______________________________________________ LUGS Mailing list - [email protected] List FAQ: http://wiki.lugs.org.sg/LugsMailingListFaq Info page: http://www.lugs.org.sg/mailman/listinfo/slugnet To unsubscribe send an empty email to: [email protected]
