Ron Mansolino on 20 Dec 2004 05:08:39 -0000


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] "bridging" firewall?


I spent the weekend at my friend's office, playing with a cisco pix 
and a 1605 (and some netgear thing). Here's the deal:

We don't have access to the ISP router, so I can't do access-lists or
change the netmask, etc :(

He wants access (remote desktop) to more than one machine, so PAT/NAT
that maps a service to one specific machine is out. I want minimally
restricted access to my Freebsd box. (as long as *I* can redefine it)
I don't mind hiding a few boxes in rfc1918 space, but then I have to 
setup/secure a proxy server, too; I don't want that on my playtoy.

the ciscos insist on having both ethernet interfaces on different networks,
we have a /28 to work with and address space is tight. So subnetting 
means we lose addresses and I can't think of a graceful way of getting
4 on one side, and 12 on the other, which isn't enough anyway. I fumbled
my way through setting up bridging on the 1605 but then I couldn't get
the access-lists to take affect. 

So how do I do this with Linux? and what does FAQ mean? :)
What should I search for (or avoid)?
thanks
-- 
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug