Re: Routing same subnet problem

From: Glynn Clements (glynn.clements@virgin.net)
Date: Sat Apr 28 2001 - 12:07:51 EST


Thomas Kotzian wrote:

> what do i have to do to have a DMZ without bridging? - how do i have to
> configure routing. - please help!

Unless you are using proxy-ARP, you need to:

a) configure the routing tables on the DMZ hosts to use the firewall
as the gateway to the Internet (and the external router, if you need
to talk to it), and

b) configure the routing table on the external router to use the
firewall as the gateway to the DMZ hosts.

You may wish to use "sysctl -w net.ipv4.conf.all.proxy_arp=1" to
enable "automatic" proxy-ARP on both interfaces.

-- 
Glynn Clements <glynn.clements@virgin.net>
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to majordomo@vger.kernel.org



This archive was generated by hypermail 2b29 : Mon Apr 30 2001 - 21:00:29 EST