[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openbsd-misc
Subject:    Re: a proposed routing conf
From:       Gerardo Santana Gomez Garrido <santana () openbsd ! org ! mx>
Date:       2002-08-24 19:16:57
[Download RAW message or body]

You don't need a second NIC for having two IPs in a same box. Use aliases.

For the box between the router and your bastion hosts you might want to
have three NICs, set a bridge for them and run a firewall.

The same box will be the gateway for your DMZ and MZ.

On Sat, Aug 24, 2002 at 03:18:57PM -0700, feniks wrote:
> Is this something anyone has used before?
> 
> This is the proposed setup:
> 
> >From the internet to the router, from the router with a public ip of say
> 65.xxx.xxx.xx1 to the bsdbox on the ip of 65.xxx.xxx.xx2 out a second ip on
> the same bsd box with an ip of 65.xxx.xxx.xx3 to various other boxes (www,
> ftp, smtp) all ips in the same subnet 65.xxx.xxx.xxx and those various boxes
> have a second nic with a private ip of 192.xxx.xxx.xxx and all on the private
> internal network.
> 
> 
> Should this be done with Natting and a redirection? How about a bridge? Is
> this configuration viable?
> 
> Thanks,
> Pat

-- 
Gerardo Santana Gómez Garrido
http://www.openbsd.org.mx/~santana/
OpenBSD México

[prev in list] [next in list] [prev in thread] [next in thread]