IP ranges with linux firewalls?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



hello,
I have two questions regarding the configuration of network
interfaces:

Question 1) 
-----------

   Provider
      |
      | ext-IP
 +----+-----+
 |          ¦ dmz-IP
 |   fw     +------- DMZ
 |          |
 +----+-----+
      | int-IP
      |
    Intranet

My Provider gives me an official address range 1.1.1.224-239. 
I would like to use for the intranet the 192.168.x.y range.

So I thought, that I would give the dmz-IP the address 1.1.1.224, the
int-IP 192.168.0.1.

Can I use for the ext-IP also 1.1.1.224 and configure the firewall
somehow as a bridge? If yes, where do I find more information
regarding this issue (ifconfig, route commands, kernel configuration)?
If no, what other options do I have?

Question 2)
-----------
Assume that I would like to build a firewall inside of a larger
network:

   1.1.1.0-255 (excluding .224 - .239)
      |
  eth0| ext-IP
 +----+-----+
 |          ¦ dmz-IP
 |   fw     +------- DMZ: 1.1.1.224-239
 |          |eth1
 +----------+

So, outside, towards ext-IP, I have all IPs 1.1.1.0-255 excluding .224
- .239, in the DMZ, I have IPs 1.1.1.224-239

From the point of network configuration, this should work, but I just
don't know how to set up the ifconfig and route commands in order to
be able to configure this correctly.

Thanks for reading this!
Any hints are greatly appreciated

Jan

------------------------------------------------------------------------
     To unsubscribe email security-discuss-request@linuxsecurity.com
         with "unsubscribe" in the subject of the message.


[Index of Archives]     [Fedora Announce]     [Linux Crypto]     [Kernel]     [Netfilter]     [Bugtraq]     [USB]     [Fedora Security]

  Powered by Linux