[H-GEN] Invisiable subnet?

The memory remains memory at techie.com
Mon Jul 14 08:52:52 EDT 1997


	G'day.

	I've been instructed to put up a small firewall computer between 
my employers, and the rest of the internet.  Nothing fancy, just to 
filter out a few packets that the NT server doesn't cope with so well 
<snigger>.

	Now, it sounds simple enough, but there's a complication.  You 
see, the firewall has to go between my company, and another who have 
traditionally been on the same class C subnet.  That in it's self isn't a 
problem because for the moment at least the ips are in distinct blocks 
and yadda yadda yadda I hacked a bit and it ceased to be a problem.

	The current situation looks rosy with the firewall computer 
routing packets out very sucessfully.  The hitch comes when the packets 
want to find their way back.  The gateway casually ignores the packets, 
because of course they're not addressed to it.

	My question is this:  Is there an easy way to pick up the packets 
destined for my side of the firewall, even though they are not addressed 
to the firewall computer.

	And yes I've already looked at some obvious alternate solutions
	eg Private subnet, masquerading or proxying.
	   Having the other company (who control the gateway to the whole 
subnet btw) just route the packets towards the firewall.

	If it can't be done easily then I may have to resort to either of 
those methods.  Both are ugly for polictical reasons.

        The memory remains <memory at techie.com>

            ///      ///  ///  ///            ///   ///
           /// ///  ///  ///   ///  ///  ///      ///
          ///            //   ///               ///
         /// ///  ///       ///   ////////    ///
        ///      ///    /////               ///

        Web page at http://student.uq.edu.au/~s335810

----------------------- HUMBUG General List --------------------------------
echo "unsubscribe general" | mail majordomo at humbug.org.au # To Unsubscribe



More information about the General mailing list