Guest
|
 Posted:
Fri Jan 14, 2005 1:52 am Post subject:
Routed WAN subnet on Linux firewall |
|
|
OK, dumb question, but bear with me.... This does refer to an earlier
post but as this question has probably been asked many times before, I
thought it might deserve it's own reply.
My ISP has assigned me a /29 subnet for WAN addresses on my DSL line.
This is a routable block. Thus, if my address block were 24.0.8.0-7,
my ISP would have told me:
24.0.8.0 (all zeros) - ignore
24.0.8.1 Gateway ISP has asked me to reserve
24.0.8.2 |
.... | Usable address space for hosts
24.0.8.6 |
24.0.8.7 Broadcast address
A router sites between my DSL bridge and my internal net. The internal
net has two main blocks:
10.1.x.x | Internal sites
10.2.x.x | DMZ servers
I now know that I can use Linux 2.6.x series kernels to do one-to-one
NAT. What I don't know is what I'd tell it to do to handle the routed
subnet. My guess is:
10.1.x.x NAT everything out 24.0.8.1
10.2.x.2 NAT out (via one-to-one) 24.8.0.2
10.2.x.3 ....
....
But how do I tell the Linux box, any inbound packets will arrive on
24.0.8.1 and route to one of the other adddresses (24.0.8.2-6) and then
be subjet to NAT rules. |
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in