Re: Firewall where internal hosts have non-reserved IPs?

From: Jem Berkes (jb2002-delete-this-AND-users@users.pc9.org)
Date: 10/23/02

• Next message: Raqueeb Hassan: "Re: NFS file sharing mount gives permission denied ..."
• Previous message: : "installing frees/wan"
• In reply to: c9f5b6@kwvyjy.com.dc: "Re: Firewall where internal hosts have non-reserved IPs?"
• Next in thread: fe6d9767@gucnqh.com.ed: "Re: Firewall where internal hosts have non-reserved IPs?"
• Reply: fe6d9767@gucnqh.com.ed: "Re: Firewall where internal hosts have non-reserved IPs?"
• Reply: Les Mikesell: "Re: Firewall where internal hosts have non-reserved IPs?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: Jem Berkes <jb2002-delete-this-AND-users@users.pc9.org>
Date: Wed, 23 Oct 2002 01:44:20 GMT

> You just run the firewall as a router with no masquerading. The
> alternative is to run it as a bridge. Try bridge.sourceforge.net (I
> think).

The bridge sounds neat, but the fringe/experimental nature of the
firewalling scares me a bit. I know I made it sound like the private IP
addresses on our LAN are out of the question, but in reality this is
looking like it might be a better option simply because it's easier and
I'm really screwed for time.

>|- eth0 and eth1 have no IP address, right?
>
> If it's a router, yes they do.

Thanks, I had not realized that before.

> You have to ask for a subnet of the University's IP range so that your
> firewall routes to this subnet.

OK, that one is really going to be near impossible. Given that there's no
way they're going to give our rather small LAN a whole subnet, do I
pretty much have to go with the private IP/NAT approach?

-- 
Jem Berkes
http://www.pc-tools.net/
Windows, Linux & UNIX software

---

• Next message: Raqueeb Hassan: "Re: NFS file sharing mount gives permission denied ..."
• Previous message: : "installing frees/wan"
• In reply to: c9f5b6@kwvyjy.com.dc: "Re: Firewall where internal hosts have non-reserved IPs?"
• Next in thread: fe6d9767@gucnqh.com.ed: "Re: Firewall where internal hosts have non-reserved IPs?"
• Reply: fe6d9767@gucnqh.com.ed: "Re: Firewall where internal hosts have non-reserved IPs?"
• Reply: Les Mikesell: "Re: Firewall where internal hosts have non-reserved IPs?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Cant Connect to Win2008 Server from 1 of several subnets ... As the firewall has a Static Route for the 10.254.0.36 Subnet that points to the default router that I changed the machine with the issues to. ... One of the reasons I like to have my Servers DHCP with Reservations... ... (microsoft.public.windows.server.networking) Re: adding new ip range to fw-1 ... Remember you are ADDING another subnet. ... -- My first problem was that the internet facing router had not been ... My firewall is a nokia ip with ng ai r55. ... Did you add the subnet to a new DMZ interface? ... (comp.security.firewalls) Re: 2nd DHCP Scope? ... I only have one subnet. ... As far as the router, there is an eithernet port with the IP of 172.20.4.1. ... the firewall is a Fortigate 100. ... Of course the 7 and 8 network are connected ... (microsoft.public.windows.server.networking) Re: IE Routing Problem ... The router will accomodate the modem. ... SonicWall when setting up a VPN. ... >> Each box is pointed to a firewall as the gateway ... > subnet, which your internal subnet uses as a gateway, has its other ... (microsoft.public.win2000.networking) Re: IE Routing Problem ... The router will accomodate the modem. ... SonicWall when setting up a VPN. ... >> Each box is pointed to a firewall as the gateway ... > subnet, which your internal subnet uses as a gateway, has its other ... (microsoft.public.win2000.dns)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(18)