Don Cohen wrote: > I'm not sending this to the list, mainly cause I worry that I > misunderstand the question. > > > I have a query related to network neighborhood. > > all my clients(their network) can see each other on the metwork. the ip > > of the linux box is 10.0.0.1 & mask 255.0.0.0. and clients being given > > ip's according to their need for network ! > > how can i stop this ?.. > > thnx in anticipation... > > I can think of several meanings of seeing each other. > > If you mean they can communicate with each other, as in ping, I think > that's good. > > If you mean they can see each others' traffic, as in tcpdump, it would > make sense to try to prevent this, i.e., to prevent one client from > attacking another. The way to do this is to put them on different > physical networks. Your linux box should have separate NICs for each > such network. For instance, eth0 goes to internet, eth1 goes to > client1 with addresses 10.0.1.*, eth2 goes to client2 with addresses > 10.0.2.*, etc. Of course you have to change your routing table in > order to accomodate this. > > Or you might mean something about how windows network neighborhoods > work, in which case I can't help you. Perhaps in this case it's the > windows boxes on the inside that should be configured differently, > e.g., different masks. > Ys..thanx buddy !..& thanx to all of u out there..i was not expecting this good help from u all...
ys the clietns network is behind the linux box and for all of our clients the gateway is 10.0.0.1 which ahain is eth4 in the box.. again i cannot have different ether for so many clients v have so i will do what Antony Stone suggested me on netfilter list--->trying out VLAN !!.. iam still not sure on the sucess but still will try it out this weekend... this is really an challange coz v have a project in hand for all offices in our building.. thanx to u all again...:) regards A.H
