Tom,
Sorry About that! Please check up this and let me know if this proposed
setup is OK.
-Siva
-----Original Message-----
From: Tom Eastep [mailto:teastep@shorewall.net]
Sent: Tuesday, June 24, 2003 7:21 PM
To: sivamurugu@indscape.com
Subject: Re: Proxy ARP with ISP PVCs
I don''t answer Shorewall questions sent to me personally.
-Tom
On Tue, 2003-06-24 at 00:22, Sivamurugu K. Pillai wrote:> Tom,
>
> Trying to find out if the following setup will work .
>
> ISP Scenario
>
> Leased Line connectivity with two Private virtual Circuits one for voice
and> another for data. But it''s a single incoming physical link. The
network
is> subnetted into two segments for voice and data respectively . Right Now
the> incoming link[from ISP] is connected to a switch. Also connected to this
> same switch are the two physical[voice and data] segments
>
> Proposed setup
>
> 1)Remove the switch
>
> 2)Insert shorewall system as the only system exposed.
>
> 3)Shorewall system will have three interfaces one for input link [leased
> line] and other two for voice and data segments.
>
> 4)Run ProxyARP on those two interfaces.
>
> 5)Devices connected to the two interfaces will have separate Default
> Gateways assigned provided by ISP
>
> The IP assignment
>
> data voice
>
> Network 203.124.152.64 203.124.152.80
>
> Subnet 255.255.255.240 203.124.152.240
>
> Default Gateway 203.124.152.65 203.124.152.81
>
> First IP 203.124.152.66 203.124.152.82
>
> Last IP 203.124.152.78 203.124.152.94
>
> Broadcast 203.124.152.79 203.124.152.95
>
> Please let me know if this will work
>
> Thanks
>
> --Siva
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://www.shorewall.net
Washington USA \ teastep@shorewall.net
On Wed, 25 Jun 2003, Sivamurugu K. Pillai wrote:> > Please let me know if this will workI don''t know. -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ teastep@shorewall.net
Alright!.
Can you please let me know if I can enable PROXY ARP on two of the
total three interfaces in the Shorewall system?
--Siva
-----Original Message-----
From: Tom Eastep [mailto:teastep@shorewall.net]
Sent: Wednesday, June 25, 2003 6:42 PM
To: Sivamurugu K. Pillai
Cc: shorewall-users@lists.shorewall.net
Subject: Re: [Shorewall-users] FW: Proxy ARP with ISP PVCs
On Wed, 25 Jun 2003, Sivamurugu K. Pillai wrote:
> > Please let me know if this will work
I don''t know.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://www.shorewall.net
Washington USA \ teastep@shorewall.net
On Thu, 26 Jun 2003, Sivamurugu K. Pillai wrote:> Alright!. > > Can you please let me know if I can enable PROXY ARP on two of the > total three interfaces in the Shorewall system?If you read the manual, you should be able to figure that out... Take a look at http://www.shorewall.net/myfiles.htm for example. Pieter.
Tom,
Had setup a four interface shorewall with proxyARP running on two
internal interfaces. The other two interfaces are connected to a switch to
which the single ISP link with two PVCs is connected.It seems to be working
now but my aim is to load balance between the two PVCs.
Thanks anyway
--Siva
-----Original Message-----
From: Tom Eastep [mailto:teastep@shorewall.net]
Sent: Thursday, June 26, 2003 6:16 PM
To: sivamurugu@indscape.com
Subject: RE: [Shorewall-users] FW: Proxy ARP with ISP PVCs
On Wed, 2003-06-25 at 20:42, Sivamurugu K. Pillai wrote:> Alright!.
>
> Can you please let me know if I can enable PROXY ARP on two of the
> total three interfaces in the Shorewall system?
>
Sure -- just set the ''proxyarp'' option in the
/etc/shorewall/interfaces
entries for the interfaces that you want to use that option.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://www.shorewall.net
Washington USA \ teastep@shorewall.net