Yes, that would be ideal. Unfortunaltely, this cannot happen either. I can do this and have done this in the past with other providers. Unless I sign up with TAC and get a fibre connection, Telus will not give me a routable block, not on a DSL connection.
I provision this type of IP addressing for customers all the time where I work. They get a /30 subnet, and then I route their IP block, maybe a /26 via their end of the /30. It's up to them to take care of the routing then, they just choose one of the IPs in their block to use as a default gateway on their DMZ NIC of their router. On Thu, 15 Aug 2002 14:29:26 -0600, Mark Lane wrote: >At 01:50 PM 8/15/02, you wrote: >> >Sorry, Now I see what you're saying... >> > >> >How many external facing connections do you have/need, and why? >> > >> >>1 connection, 5 IP's. I need the 5 IP's to run different services on >>multiple servers. HTTP, SMTP, POP3, DNS, PPTP, stuff like that. > >You don't want NAT for that portion. > >You would be best to setup a DMZ. You will need around 8 routable IP's total. > >Two for the front routing firewall >1 for each internet server (5) >1 for your Nat box. > >The front firewall handles packets coming from behind the internet but >bother sides of the firewall use public IP's. So instead of using NAT you >are just filtering packets that are hitting your internet servers. You use >a second firewall to protect your private network from the internet and >offer NAT services to the boxes on your private network. > >You can reduce the # machines and possible IPs by actually running the >routing firewall and the nat firewall on the same machine with 3 nics but >if that machine gets compromised not only do they have access to your dmz >(you internet services), they have access to your private network as well. > >regards, > >-- >Mark Lane >Hard Data Ltd. >mailto:[EMAIL PROTECTED] > >Telephone: 01-780-456-9771 >FAX: 01-780-456-9772 > >11060 - 166 Avenue >Edmonton, AB, Canada >T5X 1Y3 > >http://www.harddata.com/ >--> Ask me about our Affordable Alpha Systems! <-- > > > > >
