Hi!
If this is want You want to do, some ideas .....
Did this once before.
FW with 3 nics and a router.
2 NICs and router on same subnet.
Proxy arp makes it work.
Proxy arp is needed if they are on the same logical net but different NICs.
You may use the exactly same netmask and such for all nets.
Something like this(not sure off hand) on the firewall machine:
arp -s x.x.53.2 MAC_address_of_NIC_at_x.x.53.3 pub
arp -s x.x.53.3 MAC_address_of_NIC_at_x.x.53.3 pub
This solves following:
* Coming in on external IF and finding DMZ IF(net) via the MAC-address of the
External IF.
Does not solve follwing:
* Forwarding, routing etc BUT now it CAN work
Hint:
* I would use newer/other dist than 5.1 or reinstall new kernel/packages. For
security reasons,
new features, ease of administration and stability. All of these are important
if You want to build a firewall.
Hope I remember all this correctly..... :-)
HTH
//OLAS
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
