Alvin, great post on subnetting, but, I think the requestor needs to further define their term of "isolation" for a proper response to their issues being faced. Luis, can you give a bbetter definition of what is meant by that term? Are these different departments required to only have their own braodcast domain, or are you talking something more restrictive in nature when you use the term isolation?
If the former, Alvin;s guide here will do you well. If the later, then you are perhaps talking about something certainly more restrictive. Thanks, Ron DuFresne On Thu, 7 Feb 2002, Alvin Oga wrote: > > hi ya luis > > for subnets.... say 4 depts isolated from each other... > > a) make sure yoou have a switch.. NOT a hub that ties them together > so that they cannot sniff traffic on the other side... > ( a 4-port firewall is good ) > > Each dept has its own class-C ( simple way ) > ---------------------------- > 192.168.1.x 192.168.2.x 192.168.3.x 192.168.4.x > > NetMask: 255.255.0.0 > Network: 192.168.0.0 > Broadcast: 192.168.255.255 > > > > if you only have ONE class-C to be subnet ( 4 subnets fo 62 hosts each ) > ----------------------------------------- > ( people can change their masks to peek at the other side > ( unless you have a 4-port firewall > 192.168.1.0 192.168.1.64 192.168.1.128 192.168.1.192 > NetMask 255.255.255.192 255.255.255.192 255.255.255.192 255.255.255.192 > Network 192.168.1.0 192.168.1.64 192.168.1.128 192.168.1.192 > Broadcast 192.168.1.63 192.168.1.63 192.168.1.63 192.168.1.63 > > > more subnet stuff > http://www.ralphb.net/IPSubnet/ > http://vger.freesoft.org/CIE/Course/Subnet/ > http://www.completeis.com/support/subnet/ > http://www.cisco.com/warp/public/701/3.html > http://www.sinclair.org.au/keith/networking/subnet1.html > .. tons of um ... > >http://www.ibiblio.org/pub/Linux/docs/HOWTO/mini/other-formats/html_single/Proxy-ARP-Subnet.html > > have fun > alvin > > On Thu, 7 Feb 2002, luis wrote: > > > Hi, I have been told that in order to keep the different company > > departments "isolated" each other( but everyone accessing internet), I > > have to use subnetting. after the reading of some books and articles, I > > haven�t found any reference (one indirect but not useful). But I think that > > I need firewalls to do the job. So I�m asking for some light, reference to > > article, experience, book... whatever. > > Thanks a lot > > luis > > > > > > _______________________________________________ > > Firewalls mailing list > > [EMAIL PROTECTED] > > http://lists.gnac.net/mailman/listinfo/firewalls > > > > _______________________________________________ > Firewalls mailing list > [EMAIL PROTECTED] > http://lists.gnac.net/mailman/listinfo/firewalls > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ "Cutting the space budget really restores my faith in humanity. It eliminates dreams, goals, and ideals and lets us get straight to the business of hate, debauchery, and self-annihilation." -- Johnny Hart ***testing, only testing, and damn good at it too!*** OK, so you're a Ph.D. Just don't touch anything. _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
