* [LARTC] Linux Gateway with QoS without NAT possible?
@ 2004-03-22 11:03 Marc Gibert Ginestà
2004-03-22 13:57 ` RonSenykoff
0 siblings, 1 reply; 2+ messages in thread
From: Marc Gibert Ginestà @ 2004-03-22 11:03 UTC (permalink / raw)
To: lartc
[-- Attachment #1: Type: text/plain, Size: 1051 bytes --]
Hi!
I have the following scenario:
I have one rack with a connection provider and several servers in it.
All these servers have public IP adresses, and I would want to place a
gateway so I can control traffic on all of them.
So it seems that I sould place a linux machine in the rack, connect all
the servers with a switch and configure the default gateway on the
machines to the new one.
This new one will be in the same network as the others (public IP) and
I'd like this machine to act as a router/firewall/QoS but without doing
NAT.
What about incoming traffic? Would I have to ask the connection provider
to reroute the incoming traffic to the gateway machine?
Is it possible? Could you direct me to documents, tutorials, examples,
howtos or whatever that could help me with this setup?
Thanks in advance.
--
Sincerely,
Marc Gibert Ginestà e-mail: marcg@cometatech.com
Cometa Technologies, S.L. URL: http://www.cometatech.com
Telf.: 93 231 84 90 Fax: 93 245 93 43
[-- Attachment #2: S/MIME Cryptographic Signature --]
[-- Type: application/x-pkcs7-signature, Size: 3182 bytes --]
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: [LARTC] Linux Gateway with QoS without NAT possible?
2004-03-22 11:03 [LARTC] Linux Gateway with QoS without NAT possible? Marc Gibert Ginestà
@ 2004-03-22 13:57 ` RonSenykoff
0 siblings, 0 replies; 2+ messages in thread
From: RonSenykoff @ 2004-03-22 13:57 UTC (permalink / raw)
To: lartc
This is a multipart message in MIME format.
--=_alternative 004CBD3086256E5F_Content-Type: text/plain; charset="US-ASCII"
<snip>I have one rack with a connection provider and several servers in
it.
All these servers have public IP adresses, and I would want to place a
gateway so I can control traffic on all of them.
So it seems that I sould place a linux machine in the rack, connect all
the servers with a switch and configure the default gateway on the
machines to the new one.
This new one will be in the same network as the others (public IP) and
I'd like this machine to act as a router/firewall/QoS but without doing
NAT.
What about incoming traffic? Would I have to ask the connection provider
to reroute the incoming traffic to the gateway machine?</snip>
It sounds like you may be interested in a bridge. A bridge is more like a
switch in that it has no IP address. This way, you can drop it in place
between your rack machines and the ISP. Because it has no IP it will not
impact your network topology as far as gateways etc. But since all the
traffic is passing through it, you can filter some out (1st link) and
apply QoS (3rd link).
<snip>Could you direct me to documents, tutorials, examples,
howtos or whatever that could help me with this setup?</snip>
http://tldp.org/HOWTO/Ethernet-Bridge-netfilter-HOWTO.html
http://bridge.sourceforge.net/index.html
http://www.compsci.lyon.edu/mcritch/dante/
http://www.tldp.org/HOWTO/BRIDGE-STP-HOWTO/index.html
HTH,
-Ron
--=_alternative 004CBD3086256E5F_Content-Type: text/html; charset="US-ASCII"
<br><font size=1 face="Verdana"><i><snip>I have one rack with a connection
provider and several servers in it. <br>
All these servers have public IP adresses, and I would want to place a
<br>
gateway so I can control traffic on all of them.<br>
<br>
So it seems that I sould place a linux machine in the rack, connect all
<br>
the servers with a switch and configure the default gateway on the <br>
machines to the new one.<br>
<br>
This new one will be in the same network as the others (public IP) and
<br>
I'd like this machine to act as a router/firewall/QoS but without doing
<br>
NAT.<br>
<br>
What about incoming traffic? Would I have to ask the connection provider
<br>
to reroute the incoming traffic to the gateway machine?</snip></i></font>
<br>
<br><font size=1 face="Verdana">It sounds like you may be interested in
a bridge. A bridge is more like a switch in that it has no IP address.
This way, you can drop it in place between your rack machines and the ISP.
Because it has no IP it will not impact your network topology as far as
gateways etc. But since all the traffic is passing through it, you can
filter some out (1st link) and apply QoS (3rd link).</font>
<br>
<br><font size=1 face="Verdana"><i><snip>Could you direct me to documents,
tutorials, examples, <br>
howtos or whatever that could help me with this setup?</snip></i></font>
<br>
<br><font size=1 face="Verdana">http://tldp.org/HOWTO/Ethernet-Bridge-netfilter-HOWTO.html</font>
<br><font size=1 face="Verdana">http://bridge.sourceforge.net/index.html</font>
<br><font size=1 face="Verdana">http://www.compsci.lyon.edu/mcritch/dante/</font>
<br><font size=1 face="Verdana">http://www.tldp.org/HOWTO/BRIDGE-STP-HOWTO/index.html</font>
<br>
<br><font size=1 face="Verdana">HTH,</font>
<br><font size=1 face="Verdana">-Ron</font>
<br>
--=_alternative 004CBD3086256E5F_=--
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2004-03-22 13:57 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-03-22 11:03 [LARTC] Linux Gateway with QoS without NAT possible? Marc Gibert Ginestà
2004-03-22 13:57 ` RonSenykoff
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.