Michael W. Ryan on Fri, 16 Jun 2000 10:00:49 -0400 (EDT)

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Linux 2.2 Firewall

Okay, here's a question that I can't seem to find an answer for.

My network is a registered class C network.  I'm going to use a single
bastion firewall between the router and the LAN.  I want to forward and
not masquerade (yes, I know masq'ing is more secure, but I think it would
mess up future plans).

My question is that do I need the two sides of my FW to be two separate
subnets?  I.e. if my router is, should the external interface
of the FW be, with a mask of, and the internal
interface be, with a mas of... grrr... everything above .4 (I
can never figure those out).

Also, should the LAN systems then use the FW or the router for their


Michael W. Ryan, MCP, MCT     | OTAKON 2000
mryan@netaxs.com              | Convention of Otaku Generation
http://www.netaxs.com/~mryan/ | http://www.otakon.com/

No, I don't hear voices in my head;
I'm the one that tells the voices in your head what to say.

Philadelphia Linux Users Group       -       http://plug.nothinbut.net
Announcements - http://lists.nothinbut.net/mail/listinfo/plug-announce
General Discussion   -   http://lists.nothinbut.net/mail/listinfo/plug