[LIH] subnetting of address space

Mon, 18 Feb 2002 00:07:40 -0800 

Hello there,
I was wondering,can one further subnet a block of contiguous ip space
alloted by ones isp?The reason i ask is that i want to try out gShield
and want to subnet my address space into two so that the router and
firewall can belong to one subnet and the servers behind the firewall
can be part of the second subnet.I need to do this because gShield only
allows non private ips as routable hosts
-snip-
# Routable protection                         #
# --------------------------------------------#

# If you have a machine BEHIND the firewall
# which have NON-private ips AND you want
# to allow traffic to these machines,
# set HAVE_ROUTABLES to "YES".

# You will ALSO have to ADD the IPS of these machines
# to /etc/firewall/routables/routable_hosts
# AND EDIT /etc/firewall/routables/routables.conf
# options: YES, NO

HAVE_ROUTABLES="NO"
-snip-
I tried it out by subnetting our address space and putting in a static
route in the router for the routable hosts behind the firewall.I also
changed the subnet mask of the address assigned to the router to reflect
the subnet mask obtained by subnetting the address space into two.What
happened was that I found I could access only certain networks in the
internet and not others (sort of like when the subnet mask is wrong -
though I checked the calculations for this).
The subnet alloted by our ISP was
        Subnet          Subnet Mask     Broadcast       First Host      Last
Host
        164.164.79.128  255.255.255.192 164.164.79.191  164.164.79.129
164.164.79.190
and I subnet it into two as follows:
        Subnet          Subnet Mask     Broadcast       First Host      Last
Host
        164.164.79.128  255.255.255.224 164.164.79.159  164.164.79.129
164.164.79.158
        164.164.79.160  255.255.255.224 164.164.79.191  164.164.79.161
164.164.79.190
I cant figure out why after doing this I could only ping certain
networks on the internet but not others.Could it be a problem with our
router (an old Zyxel Prestige 153X).It supports 4 static routes.How do I
go about having routable hosts behind the firewall?Can it be that I have
to leave the setup on for sometime for RIP broadcasts to take place?

Regards,
Dayalan


_______________________________________________
linux-india-help mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/linux-india-help

Reply via email to