Here's our setup:
We have a small network off a Unix system connected to a switched hub
which connects to our intranet and if needed the internet.
For any address within our intranet (10.10.x.x) the packet goes out as
is
For any address that isn't 10.x.x.x it goes to a 10.10.1.1 gateway which
handles getting to the internet.
For whatever reason which can't seem to be resolved easily, we are
seeing
a lot of traffic across our switched hub that isn't for any IPs that
are on our leg of the switch. The biggest problem is that the other
side of the switch is 100mbs and our side is 10mbs, so if a really large
print job goes through the switch (which isn't bound for any of our IPs)
it makes it almost impossible for our terminal servers to talk to the
unix
system (using LAT, if they can't get through in 1sec or less, they log
off
all their ports, and try to reestablish it's LAT link).
So what I want to do, is place a linux machine with two NICs between the
switched hub and our network, and only forward packets that need to be
so in the future that big print job won't even make it through to our
network because it's not bound for us. There will be no reason for LAT
packets to be passed out of our network to the switch, so that not a
problem
if LAT can't be processed.
Basically, I want this to be invisible to whole network. I'm not sure at
this point how to go about setting this up, what IP# each NIC should
be....
I thought about trying to setup the system as a bridge, however I can't
seem
to be able to get the BRCFG.tgz file from Allen Cox's homepage, Our DNS
can't
seem to resolve the address of ftp://shadow.cabi.net/pub/Linux/BRCFG.tgz
Is this kept at any mirror sites? Since the tutorial for this:
http://www.linux.com/howto/mini/Bridge.html seems to mention this as
an invisible machine (no IP#'s), this looks like what I'm after.
Using the above, will the bridge software also filter the packets I
don't want out?
Thank for any info/input
George Gallen
[EMAIL PROTECTED]
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
