> Thanks for the quick response although I need to tell you about a small
> change that I actually have here at the university.
>
> We have a class C network (146.9.31.x) for this research particular lab,
> but some of the machine (like a few MAC's and PC's) will not be behind
> the firewall although it might be a good idea to try and put them behind
> it. We were still trying to decide if there were any disadvantages to
that.
>
> so without them behind the firewall the diagram would look like:
>
> With gate (146.9.31.1)
>
> INTERNET
> |
> |
> |---------------- 146.9.31.x (about 8 MAC's and PC's)
> |
> | 146.9.31.19
> -----
> |LRP|
> -----
> | 146.9.31.19
> | (DMZ)
> |
> ---------- 146.9.31.x -----
> | | |
> Server Server ... Server
> (38) (18) N
>
>
> cheers and I really appreciate all of your help,
> Lonnie
This is not a problem, you just have to tell your LRP box which IP's are on
which side of the network. This is done with the eth*_ROUTES and
DMZ_EXT_ADDRS. Just make sure all the IP's on the internet side of your
firewall appear in eth<ext>_ROUTES and DMZ_EXT_ADDRS, and everything will
work.
Charles Steinkuehler
http://lrp.steinkuehler.net
http://c0wz.steinkuehler.net (lrp.c0wz.com mirror)
_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
