[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [SLUG] Routing across ethernet and ppp?

To: Jason Lowe <jason@nospam.instrumental-it.com>
Subject: Re: [SLUG] Routing across ethernet and ppp?
From: Terry Collins <terryc@nospam.zip.net.au>
Date: Tue, 02 May 2000 12:34:03 +1000
CC: slug@nospam.slug.org.au
Organization: WOA Computer Services
References: <002401bfb3db$1722f580$0500a8c0@nospam.webserver>
Sender: owner-slug@nospam.newtreno.spectrum.com.au

Jason Lowe wrote:
> 
> >Ummm... you shouldn't be using the 203.x.x.x range on your internal
> >interfaces. There are designated ranges especially for this -
> >192.168.x.x is the one that I use. This could be playing havoc with your
> >routing as well.
> 
> I require two PC visible to the outside world. One will run mail and the
> other the web server.
> 
> The PCs on the internal network all have 192.168.0.x and access the Internet
> through our proxy server.

My 2c worth on various options.

a) Router gateway. Your gateway is a router (hw or sw) that directs
internet packets as appropriate to www, mail or ipfw. This is useful
if you want to add more boxes in future

b) use one box as gateway and use subnetting to redirect other
www/mail/ipfw to other box(es). I'll be honest in that subnetting is
still black magic to me and most other people. There should be
something in the SLUG archives as I'm sure this question has come up
before.

c) use a generic box as gw/ipfwadmin/etc that redirects www to an
internal box and mail/smtp to another box, and etc, i.e. just because
you want to put two services on the internet, the boxes do not have to
be physically there. I personally prefer this methd as it means I'm
only worrying about the security on one box that is directly
accessable on the internet, so I don't have to worry about services on
'N' boxes on the net.

d) Read the Building internet firewalls book for a fuller
consideration of the various methods and issues behind each. (Aps if
there is a bit of suck eggs here)

> 
> Regards,
> 
> Jason Lowe
> 
> --
> SLUG - Sydney Linux Users Group Mailing List - http://www.slug.org.au
> To unsubscribe send email to slug-request@nospam.slug.org.au with
> unsubscribe in the text

--
   Terry Collins {:-)}}} Ph(02) 4627 2186 Fax(02) 4628 7861  
   email: terryc@nospam.woa.com.au  www: http://www.woa.com.au  
       or terryc@nospam.zip.net.au 
   WOA Computer Services <lan/wan, linux/unix, novell>
   snail:  PO Box 1047, Campbelltown, NSW 2560.

 "People without trees are like fish without clean water"
--
SLUG - Sydney Linux Users Group Mailing List - http://www.slug.org.au
To unsubscribe send email to slug-request@nospam.slug.org.au with
unsubscribe in the text

References:
- Re: [SLUG] Routing across ethernet and ppp?
  - From: "Jason Lowe" <jason@nospam.instrumental-it.com>

Prev by Date: Re: [SLUG] Routing across ethernet and ppp?
Next by Date: Re: [SLUG] [ECOMM] Re: [LINK] Warnings over second "flaw" in RedHat Linux (fwd)
Prev by thread: Re: [SLUG] Routing across ethernet and ppp?
Next by thread: Re: [SLUG] Routing across ethernet and ppp?
Index(es):
- Date
- Thread