All I can think of is that your numbering looks like it's going to
be a nightmare.
For the Win95 box and the 6.1 IPMasq box, use one subnet....
say 192.128.67.64 and 192.128.67.65 for those two connected nics.
Use a DIFFERENT (totally different!) subnet for the other nics.
10.1.1.100-10.1.1.105 or whatever... figure out a totally different
subnet. That way, you don't have to worry about what subnet the
IPMasq machine is on. You're getting mucho complicated in trying to
send out, but you increase you security a bit further. The gateway
box should be a gateway to two different subnets, and should they
should be DISTINCTLY different.
Bill Ward
-----Original Message-----
From: Johnnio [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 21, 2000 5:09 PM
To: Charles Galpin
Cc: recipient.list.not.shown; @nswcphdn.navy.mil
Subject: Re: Need Help 'IP numbering' IPmasq'd Home Network
Hi Charles,
You helped me once before which I still appreciate greatly.
I have a reason for using the Win-95 Box as the dialup box.
I have a SupraSonic Dual Modem which I have not been able
to get to properly work with 'EQL' so am trying this
temporary solution.
I have set up a network with a Linux box before
but this time I need Win95/NT as the dialup box. With a
Linux 'Gateway/Firewall' Box between it and my family computers.
and I really want to see if I can make it work this way...
as an exercise. I know... I'm a bit nutty !!!!
I thought I would use IPchains rules to keep intruders out of
Box-2, 3, 4, 5, etc.... and I thought that it might be
better to use separate network numbering between
Box-1/Nic-1 and Box-2/Nic-1 to help accomplish that goal.
But if I don't need to I won't.
Assuming I can get the Win95 box to actually 'act like' a server
do you think the following numbering is OK ?
You once mentioned to me of the dangers of using 192.168.127.*
anything... maybe this is the time to switch to the 10.*.*.*
private IP numbers ? What do you think about this?
Charles I really want to thank you for getting back to me.
I really appreciate it.
John
[EMAIL PROTECTED]
Charles Galpin wrote:
> Let me first answer the question of needing two networks. the answer is
> no. Put the modem on the linux box and put that win95 box behind the
> firewall (where it belongs). keep the second nic in you linux box so you
> don't have to reboot when DSL comes your way :)
>
> Now, I'm assuming the 3 boxes labeled Box-3 is a typo and you mean Box-3,
> Box-4, and Box-5 right?
Yes... it was a typo
........
> hth
> charles
The Following was modified per Charles' suggestions
> > [ISP]
> > |
> > V
> > | |=Box-1 ISP DialUp via Modem
> > >-----|---'56k SupraSonic DUAL LINE modem= "106 K" in Win95'
> > |
> > |=Win-95 [ with a server s/w installed ]
| GATEWAY is set by PPP ['0.0.0.0' I believe]
> > |
> > >-----|---'NIC-1'= 192.168.127.64 Mask= 255.255.255.0
> > |
> > |
> > >-----|---'NIC-1'= 192.168.127.65 Mask= 255.255.255.0
> > | Box-2 THE GATEWAY for this box is 192.168.127.64
> > |=LINUX RH 6.1 [ with IPCHAINS... installed ]
> > >-----|---'NIC-2'= 192.168.127.66 Mask= 255.255.255.0
> > |
> > |
> > >--|==LynkSys HUB, 10BT, 5 ports
> > |
> > | THE GATEWAY for all boxes below is 192.168.127.66
> > |
> > |--Box-3, NIC-1= 192.168.127.3 Mask= 255.255.255.0
> > |
> > |--Box-4, NIC-1= 192.168.127.4 Mask= 255.255.255.0
> > |
> > |--Box-5, NIC-1= 192.168.127.5 Mask= 255.255.255.0
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
