From: "loong" <loong@eads.com.my>
To: netfilter@lists.netfilter.org
Subject: firewall bridge , Vlan ?
Date: Mon, 9 Jun 2003 11:46:59 +0800 [thread overview]
Message-ID: <039a01c32e39$ce5ab310$b401a8c0@ows5> (raw)
In-Reply-To: 005c01c32e38$380565f0$1500a8c0@expi
[-- Attachment #1: Type: text/plain, Size: 2851 bytes --]
hi
is there anywhere install bridge firewall and install vlan
http://www.candelatech.com/~greear/vlan.html
so that my firewall can run like netscreen without using hug or switch to my webserver.
currently is
internet -- > eth0 firewall eth1 -- > hub ------> webserver 1
------> webserver 2
is that anywhere i install few network card in my firewall then
internet ---> eth0 firewall eth1 ----> webserver 1
eth2 -----> webserver 2
eth3 -----> webserver 3
thanks
loong
----- Original Message -----
From: John Paul
To: George Vieira ; netfilter@lists.netfilter.org
Sent: Monday, June 09, 2003 11:35 AM
Subject: Re: Problem Found! - Firewall Rule
Thanks George. I have modified my network to (10.10.0.0/24).
Now, I'am able to ping the machines inside the network after connected to the VPN. The problem now is, I'm not able to map/see machines in Network Neighborhood except the VPN server.
Any clue?
----- Original Message -----
From: George Vieira
To: John Paul ; netfilter@lists.netfilter.org
Sent: Friday, June 06, 2003 8:56 AM
Subject: RE: Problem Found! - Firewall Rule
Your local IP is the same as the remote networks IP.. so how is the local machine to know that 192.168.0.55 or 66 or 32 is on the VPN!?
The only way I know is to proxyarp the ppp device that the vpn is running on.. I'm assuming it's PPTP so you could try this command when the VPN comes up :
echo 1 > /proc/sys/net/ipv4/conf/$VPNDEV/proxy_arp
and this must be done on the VPN server too..
I've never done it this way with a VPN.. but you can only try it..
I'm surprised that anything really works properly the way you've done it because the firewall has 2 network devices with the same IP range.
Thanks,
____________________________________________
George Vieira
Citadel Computer Systems Pty LtdSystems Managergeorgev AT citadelcomputer DOT com DOT au
Citadel Computer Systems Pty Ltd
Phone : +61 2 9955 2644HelpDesk: +61 2 9955 2698http://www.citadelcomputer.com.au
-----Original Message-----
From: John Paul [mailto:john@pinoylinux.sytes.net]
Sent: Friday, June 06, 2003 9:56 AM
To: netfilter@lists.netfilter.org
Subject: Problem Found! - Firewall Rule
Hello Folks, its me again :(
Below is my config. My problem is, I can connect to VPN but for some reason, I cannot see machines inside the network after being connected. Can somebody give me the simpliest firewall rule on this? just for me to see the machines inside the network.
Thanks!
/JP
[-- Attachment #2: Type: text/html, Size: 11103 bytes --]
next prev parent reply other threads:[~2003-06-09 3:46 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-06-06 0:56 Problem Found! - Firewall Rule George Vieira
2003-06-06 6:52 ` Ray Leach
2003-06-09 3:35 ` John Paul
2003-06-09 3:46 ` loong [this message]
2003-06-09 10:08 ` firewall bridge , Vlan ? Cedric Blancher
[not found] <09B04A55822EFF4DA48D2E0BB2941D4A01926C@wardrive.citadelcomputer.com.au>
2003-06-09 5:22 ` loong
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='039a01c32e39$ce5ab310$b401a8c0@ows5' \
--to=loong@eads.com.my \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox