News: This forum is now permanently frozen.
linktree m0n0wall Forum  >  m0n0wall Support (English)  >  General Questions
linktree Topic: 1 ISP 5NICs(nets) with individual DHCP
Pages: [1]
Topic: 1 ISP 5NICs(nets) with individual DHCP  (Read 2540 times)
« on: February 01, 2008, 04:05:17 »
whydee *
Posts: 3
Can this be done with one monowall?

From ISP with 10 mb burstable to 100 I have 5 IPs and I have 5 small public networks. I would like for each network to have its own DHCP 10.10.10.1, 10.10.10.2 ... 10.10.10.5 with possibility of shaping each network.
« Reply #1 on: February 01, 2008, 10:27:07 »
markb ****
Posts: 331
Could you be a bit clearer of what you are trying to achieve. Monowall could handle 5 subnets with 1 IP address and NAT'ing the traffic standing on it's head.  What do you mean by 5 public networks?  The IP addresses you mention 10.10.10.1 etc are private addresses.  Are you able to draw a diagram of what you are looking to do?

Regards
« Reply #2 on: February 04, 2008, 02:21:24 »
whydee *
Posts: 3
Sorry my fault, I do need to be more specific:

{ISP with block of 5IPs}
{m0n0wall]}
|-- 1 - office 10.10.20.1/29 with possibility to make up to 3 virtual servers through 1st ISP's IP address
|-- 2 - office 10.10.20.2/29 with possibility to make up to 3 virtual servers through 2nd ISP's IP address
|-- 3 - ...
|-- 4 -
|-- 5 -

• those production offices are for rent or temporary use (that is why I called them public)
• each office has dedicated un-managed switch
• I would like to do network shaping for each office
• I would like to do basic URL, MAC address filtering if possible
• Clients in the Offices 1-5 should be able to VPN to their main office
• Virtual servers are FTP, FileMaker, ARD
• Check the bandwidth with may be possibility to close connection at N Gb

TIA
« Reply #3 on: February 06, 2008, 10:05:06 »
markb ****
Posts: 331
That makes things clearer.  I have never had to do this, so I am prepared to be corrected.  I believe, that with only 5 IP addresses you will not be able to have the IP addresses reside on the 5 different subnets you are creating, however, I believe this is where Proxy ARP comes in.  With this, you can have your WAN interface give replies for IP addresses other than it's own and would enable you to redirect incoming traffic to whichever segment based on which IP address the request came in on with the relevant NAT and rule entries. Does that make sense to you?  You may have to ask a question about the Proxy ARP service on the forum if you need further configuration help.
« Reply #4 on: February 07, 2008, 04:37:57 »
whydee *
Posts: 3
Thank you so mush mark, I think i'm in the right direction now...
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines