|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
[PLUG] "bridging" firewall?
|
I spent the weekend at my friend's office, playing with a cisco pix
and a 1605 (and some netgear thing). Here's the deal:
We don't have access to the ISP router, so I can't do access-lists or
change the netmask, etc :(
He wants access (remote desktop) to more than one machine, so PAT/NAT
that maps a service to one specific machine is out. I want minimally
restricted access to my Freebsd box. (as long as *I* can redefine it)
I don't mind hiding a few boxes in rfc1918 space, but then I have to
setup/secure a proxy server, too; I don't want that on my playtoy.
the ciscos insist on having both ethernet interfaces on different networks,
we have a /28 to work with and address space is tight. So subnetting
means we lose addresses and I can't think of a graceful way of getting
4 on one side, and 12 on the other, which isn't enough anyway. I fumbled
my way through setting up bridging on the 1605 but then I couldn't get
the access-lists to take affect.
So how do I do this with Linux? and what does FAQ mean? :)
What should I search for (or avoid)?
thanks
--
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug
|
|