Hi Kiko,

Try this open source program-->http://www.openvpn.org
This program allows you to connect Virtual Network using OpenVPN
(Open Virtual Private Network). It is also runs on iptables/netfilter
firewall.

You could also use FreeS/WAN -->http://www.freeswan.org

Hope you could make it. If not please let me know and I'll help you
how to configure your virtual network.

Al Maclang
*************************************
Alberto Maclang, BCLA, CCNA
Senior Network Engineer
NSG Philippines, Inc.
*************************************



                                                                                       
                          
                    Kiko Da Komodo Dragon                                              
                          
                    <[EMAIL PROTECTED]        To:     [EMAIL PROTECTED]                
             
                    oo.com.sg>                        cc:                              
                          
                    Sent by:                          Subject:     [plug] Network 
Bridging                       
                    [EMAIL PROTECTED]                                                  
                 
                    .com                                                               
                          
                                                                                       
                          
                                                                                       
                          
                    10/07/2003 06:54 PM                                                
                          
                    Please respond to                                                  
                          
                    Philippine Linux Users                                             
                          
                    Group Mailing List                                                 
                          
                                                                                       
                          
                                                                                       
                          




guys,

our current office network is flat with everyone belonging to the same
segment and everyone connected to cascaded hubs.

this has generated a lot of networks storms sometimes rendering the network
unusable.

am in-charged of maintaining a set of PCs in a small section that mostly
share files together. to keep my small network from being affected by the
rest, i plan to put a Linux firewall between the office segment and my
internal network.

however one of the requirements is that both networks still has to be able
to communicate bi-directionally, meaning connections can be initiated be
anyone.

the plan on the drawing board is for the NIC facing the office segment to
have several virtual IPs and interfaces. each virtual IP corresponds to one
internal IP of my internal network. any traffic directed to a particular
virtual IP will be redirected to the corresponding internal machine -- a
1:1 NAT. the internal machine will receive the packet with the source IP
still as the originating machine and not the IP of the firewall.  all
traffic going out from the internal network will have a source virtual IP
associated with it as it goes to the office segment.

am not sure how to do this with iptables/netfilter. could anyone point me
to a good source?

thanks!

kiko


(Embedded image moved to file: pic31733.gif) Yahoo! Photos
- A free party for the most "shiok" photo. Join now!--
Philippine Linux Users' Group (PLUG) Mailing List
[EMAIL PROTECTED] (#PLUG @ irc.free.net.ph)
Official Website: http://plug.linux.org.ph
Searchable Archives: http://marc.free.net.ph
.
To leave, go to http://lists.q-linux.com/mailman/listinfo/plug
.
Are you a Linux newbie? To join the newbie list, go to
http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie





<<attachment: pic31733.gif>>

--
Philippine Linux Users' Group (PLUG) Mailing List
[EMAIL PROTECTED] (#PLUG @ irc.free.net.ph)
Official Website: http://plug.linux.org.ph
Searchable Archives: http://marc.free.net.ph
.
To leave, go to http://lists.q-linux.com/mailman/listinfo/plug
.
Are you a Linux newbie? To join the newbie list, go to
http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie

Reply via email to