Not that this has anything necessarily to do with Security, but my IP Subnet calculator tells me that the best you're gonna do is: 1.2.3.0 - 1.2.3.15 (0,15 reserved) 255.255.255.240 1.2.3.16 - 1.2.3.31 (16,31 reserved) 255.255.255.240 I'm certainly not a networking expert (and I'm sure there's a maillist just for Linux sysadmin), but if you don't use consistent netmasks within your (C-class) you run the risk of routing overlaps. If you wanted to try it, you could make static routing entries specifying that all traffic for... should be routed to ethX. That's my 2c, -=Berns ------ Bernard Hoffman Director of Software Engineering _ _ _ _ _ _ _ e | Market Capital, Inc. 610-592-0522 http://www.emarketcapital.com -----Original Message----- From: Jan Stifter [mailto:j.stifter@medres.ch] Sent: Wednesday, February 13, 2002 9:34 AM To: security-discuss@linuxsecurity.com Subject: Re: IP ranges with linux firewalls? Hello, On Wed, 13 Feb 2002 14:10:32 +0000, Nigel Marett <nigel.lynskey-marett@idaya.co.uk> wrote: >Jan, > >you could try aliasing the first card 14 times, and aliasing the second the >rest of the net. > >Or is this not what you after? I don't want to give this card 16 IP numbers, I just want to tell this card, that there is a network with 16 IPs. If you do ifconfig eth0 1.2.3.0 netmask 255.255.255.240 up you say to the kernel, that there is a network 1.2.3.0 up to 1.2.3.15 listening on the eth0 card. how do you say to the kernel, that there is a network 1.2.3.16 up to 1.2.3.255 listening on the eth1 card? any hints are greatly appreciated jan ------------------------------------------------------------------------ To unsubscribe email security-discuss-request@linuxsecurity.com with "unsubscribe" in the subject of the message. ------------------------------------------------------------------------ To unsubscribe email security-discuss-request@linuxsecurity.com with "unsubscribe" in the subject of the message.
