[H-GEN] Invisiable subnet?
The memory remains
memory at techie.com
Mon Jul 14 08:52:52 EDT 1997
G'day.
I've been instructed to put up a small firewall computer between
my employers, and the rest of the internet. Nothing fancy, just to
filter out a few packets that the NT server doesn't cope with so well
<snigger>.
Now, it sounds simple enough, but there's a complication. You
see, the firewall has to go between my company, and another who have
traditionally been on the same class C subnet. That in it's self isn't a
problem because for the moment at least the ips are in distinct blocks
and yadda yadda yadda I hacked a bit and it ceased to be a problem.
The current situation looks rosy with the firewall computer
routing packets out very sucessfully. The hitch comes when the packets
want to find their way back. The gateway casually ignores the packets,
because of course they're not addressed to it.
My question is this: Is there an easy way to pick up the packets
destined for my side of the firewall, even though they are not addressed
to the firewall computer.
And yes I've already looked at some obvious alternate solutions
eg Private subnet, masquerading or proxying.
Having the other company (who control the gateway to the whole
subnet btw) just route the packets towards the firewall.
If it can't be done easily then I may have to resort to either of
those methods. Both are ugly for polictical reasons.
The memory remains <memory at techie.com>
/// /// /// /// /// ///
/// /// /// /// /// /// /// ///
/// // /// ///
/// /// /// /// //////// ///
/// /// ///// ///
Web page at http://student.uq.edu.au/~s335810
----------------------- HUMBUG General List --------------------------------
echo "unsubscribe general" | mail majordomo at humbug.org.au # To Unsubscribe
More information about the General
mailing list