Thanks!
I've been working on the changes I should be able to test them on Friday!
Glenn
Charles Steinkuehler wrote:
> > I noticed you were responding to a question. Did you see the following
> > posting? I received no response.
> >
> > Thanks a buncj if you can help.
> >
> > Glenn
> >
> > "Glenn A. Thompson" wrote:
> >
> > > Hi all:
> > >
> > > I downloaded and configured Charles Steinkuehler's Static Eiger disk
> > > image. I managed to get it working with my intel ethernet cards and
> > > also added vim and set it up to port forward a fews services to multiple
> > > hosts. All works great. I have been using it for a month now with no
> > > poblems.
> > >
> > > So, now the facility that was using the LRP box (via the lan it sits on)
> > > will be connected to another facility through a local private T1. What I
> > > want to do is get LRP to firewall (masq and portforward) for both
> > > facilities. The current plan is to make one facility 192.168.1.0 and
> > > the other 192.168.2.0. I figured I would just use rip on the routers
> > > that route between the two facilities.
> > >
> > > Asumming this can be done, do I just add a second network to the
> > > INTERN_NET variable in the network.conf?
>
> I don't see any need for RIP, just create some static routes on the LRP box
> so it knows about all the networks. To connect everything to the internet,
> just add multiple CIDR network specifications to the INTERN_NET variable
> (NOTE: This only works with Eiger & later firewall scripts).
>
> WARNING: Your internal networks won't be able to talk to each other unless
> you specifically create forwarding rules to allow the traffic. With the
> default Eiger scripts, this means editing /etc/ipfilter.conf.
>
> > Clarification: I assume I need to add a
> > static route from the LRP box to the the local loop router. I'm wanting
> the
> > LRP box to be a choke firewall for two internal lans separated by a T1.
>
> This sounds appropriate given your text description of the network.
> Remember, a picture's worth a thousand words, even if it's an ascii-art
> network diagram ;-)
>
> Charles Steinkuehler
> http://lrp.steinkuehler.net
> http://c0wz.steinkuehler.net (lrp.c0wz.com mirror)
>
> _______________________________________________
> Leaf-user mailing list
> [EMAIL PROTECTED]
> http://lists.sourceforge.net/lists/listinfo/leaf-user
_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/lists/listinfo/leaf-user
