[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ntsecurity
Subject:    Re: [NTSEC] Binding Multiple IP addresses to one NIC...
From:       "Ian Eure" <ieure () peninsula ! wednet ! edu>
Date:       1997-11-27 0:59:11
[Download RAW message or body]


TO UNSUBSCRIBE: email "unsubscribe ntsecurity" to majordomo@iss.net
Sending subscribe, unsubscribe, quit, remove, or any other variation to
ntsecurity@iss.net WILL FAIL!  If your E-Mail address has changed or you did
not save the welcome message - contact ntsecurity-owner@iss.net for help!

-----Original Message-----
From: Jim Ainley <jainley@slip.net>
To: John Taylor <john@carrhouse.force9.net>; NT Security List
<ntsecurity@iss.net>
Date: Wednesday, November 26, 1997 3:04 PM
Subject: [NTSEC] Binding Multiple IP addresses to one NIC...


>
>TO UNSUBSCRIBE: email "unsubscribe ntsecurity" to majordomo@iss.net
>Sending subscribe, unsubscribe, quit, remove, or any other variation to
>ntsecurity@iss.net WILL FAIL!  If your E-Mail address has changed or you
did
>not save the welcome message - contact ntsecurity-owner@iss.net for help!
>
>under NT4SP3 with a single nic. Has anyone succesfully been able to todo
this?
>
>The NT help files say that I can do this with up to 5 IP address but I'm
not having
>any luck with it.
>
>I have a set of static addresses (let's say 172.20.0.0 - 172.20.0.10) and I
want to
>bind
>them to one nic for purposes of hosted domains (http, ftp, & mail) using
IIS3 &
>IMS.
>
>I'm also (at the moment) running MS-DNS services (any comments on this?).
>
>The machine's initial IP address is 172.20.0.1 and the domain is
PRIVATE.NET,
>no problem here. Now, I'll go into the advanced TCP/IP properties, add a
second IP
>address of 172.20.0.2, add a new zone rocord to the DNS with a domain of
A.COM
>and an 'A' record of 'WWW'. Then update the record database in DNS. So this
should
>reflect the following: 172.20.0.2 = www.a.com
>
>What am I missing here???
An explanation of the problem...? You shouldn't have any problems with that
setup- but beware. NT does _not_ like having ips in different subnets bound
to one nic. Had a problem with it once- it was sending ip dest_unreach
messages when trying to use certain services on the ip bound to the other
subnet, despite the fact that it was _obviously_ reachable, since it got the
syn packet and sent an icmp back in response. <shrug> more nt lameness.

[prev in list] [next in list] [prev in thread] [next in thread]