{Disarmed} Re: [Leaplist] noob networking help: 2 network ranges
on same interface
Ingo Claro
miclaro at netred.cl
Tue Sep 29 13:18:06 EDT 2009
-------- Original Message --------
Subject: Re: {Disarmed} Re: [Leaplist] noob networking help: 2 network
ranges on same interface
From: Bryan J. Smith <b.j.smith at ieee.org>
To: This is the Leap Main List <leaplist at leap-cf.org>
Date: 09/29/2009 12:19 PM
> So, _again_, what problem are you trying to solve? What is your issue or
> limitation? What is driving this second IP subnet?
>
> -- Bryan
>
Bryan:
First of all, thank you for your help and patience.
In present time I've got 1 firewall (Linux Centos with iptables) with 3
network cards: WAN, DMZ and LAN
In DMZ I've got 1 IP segment with servers of different clients. The
problem that I want to avoid is that one client could see, connect,
interfere with a server of another client. They don't have shell access
(but could in the future), but can upload files. The hosting is primary
on php, but there is also java (with tomcat) and mysql servers.
So I thought of putting each client's servers on different subnets to
avoid any interaction between the servers. I would also like to put the
servers that I use in a separate subnet (mail, proxy, ...)
Ideally I would use only 1 nic on the firewall, so that there is room
for growth, if not, the firewall nics would cap the number of subnets.
in brief: I want to separate each client's servers so that they can't
see each other.
regards,
Ingo.
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
More information about the Leaplist
mailing list