from the quill of "Jacob Kjeldahl" <[EMAIL PROTECTED]> on scroll
<[EMAIL PROTECTED]>
>
> The firewall has three nic's:
>
> Internal: eth0, 192.168.10.10/255.255.255.0
> DMZ: eth1, 172.24.42.200/255.255.0.0
> External: eth2, 172.24.42.100/255.255.0.0
This is wrong. You have put two interfaces/networks (eth1 and eth2) on
the same subnet. They must be different. The subnet that both
172.24.42.200/255.255.0.0 and 172.24.42.100/255.255.0.0 sit on is
172.24.0.0 which encompasses the address range 172.24.0.0
172.24.255.255. That is all considered one network.
What you have is a basic subnetting problem not a firewall problem. You
need to bone up on your subnetting before you even approach the
firewalling issues. I don't know the source of any good subnetting
tutorials but I am sure somebody here does.
b.
--
TurboLinux, Inc.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
