On Wed, Feb 20, 2002 at 06:24:27PM -0500, Mike wrote: > It breaks all kinds of rules concerning security and clean network > design, but it should work. > > As an example of unintended problems, if you have DHCP setup on either > interface of the Linux box it could serve invalid addresses to other > folks at your ISP.
Please add your comments below the OP. I have this setup at home. The box with the public IP has a firewall. According to my ADSL service provider, my connection to their gateway is somehow "private", but I haven't really tested with tcpdump if all incomming packets are destinated to my public IP. But if that is the case, there seem to be no risk for the box with the private IP. (I also assume that the traffic over the private network (192.168.0.1 <-> 192.168.0.2) is not echoed further by the gateway.) Am I too optimistic here? /Hans > Mike > > -----Original Message----- > From: stonelx [mailto:[EMAIL PROTECTED] > Sent: Tuesday, February 19, 2002 9:35 PM > To: debian-user > Subject: network topology question > > Hi all, > I was wondering if anyone thinks this would be > bad networking practice: > > To setup a linux box with 2 nics. > One with a public IP and the other with a private IP. > The linux box is acting as a masqurading box. (ipmasq) > However, both nics are plugged into the same switch or hub. > > Basically, you could be running 2 different subnets > on one network segment. Some machines off the switch would > have public IP's, and some would have Private. > I understand this could cause all kinds of havoc if file services > were running on the linux box. (netatalk, samba) but lets assume > that the workstations in this Lan are for internet surfing. > > Anyone out there tried this and have any experiences to share? > > Thanks > Mike > > > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED] > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > -- Hans Ekbrand, FK, forskarstuderande tel +46 (0)31-773 4773, Sociologiska institutionen, G?teborgs universitet Dept of Sociology, Goteborg University Box 720, SE-405 30 GOTEBORG Bes?ksadress/visiting address: Skanstorget 18 World Wide Web: http://www.sociology.gu.se
pgpibmZUS0oFf.pgp
Description: PGP signature
