Peter Stuge wrote: > The other is to NETMAP each VLAN into a different IP network. There > is a NAT target in the kernel for this. This is NAT, so your > applications may suffer with this option too. NETMAP is a 1:1 > mapping of IP addresses from one IP network to another. This does not > scale too well since there's only a limited number of private IP > networks reserved. His source networks were all 10.1.1.0/24, so he could easily remap to the 172.16.0.0/12 space and have room for thousands of NAT'ed networks (probably more than his system can handle). For that matter, he could remap to a large portion of 10.0.0.0/8 and have room for more networks than VLANs can even support (4096, IIRC).
