[ previous ] [ next ] [ threads ]
 
 From:  "Barry Mather" <barry dot mather at dorecentres dot com dot au>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] "Virtual" interfaces ?
 Date:  Tue, 1 Feb 2005 16:32:50 +1100 
My advice would be to purchase a layer 3 network switch, do all the vlan-ing on that, you just
create outgoing nat rules for each network, if you disallow traffic between the networks in the
rules that you keep them all separate ...

Personally I use extreme networks kit, but any L3 switch will do it ..

cheers

-----Original Message-----
From: Chris Buechler [mailto:cbuechler at gmail dot com] 
Sent: Tuesday, 1 February 2005 9:17 AM
To: Peter Parnièan
Cc: m0n0wall at lists dot m0n0 dot ch
Subject: Re: [m0n0wall] "Virtual" interfaces ?

On Mon, 31 Jan 2005 22:49:30 +0100, Peter Parnièan <peter at procad dot sk> wrote:
> Hi guys, Im using 3nic and its working good. My question: Is it possible to create virtual
interfaces?
> I need to have 25subnets: x.x.1.x, x.x.2.x - x.x.25.x but i dont have 25 slots :-)
> 
> Each user will be in differen subnet and therefore they can't communicate without m0n0 and than I
have possibility to controll traffic between users. (it like "isilation" mode)
> 

On 25 separate broadcast domains?  Use of VLAN's would be most
appropriate.  If you're using 25 subnets on one broadcast domain, it
pretty much eliminates the point of segregating in the first place.

-Chris

---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch




Dore Achievement Centres (Pty) Ltd - Hotline: 1300 55 77 11

www.dorecentres.com.au

This e-mail message may contain confidential or privileged information 
and is intended solely for the individual to whom it is addressed. If you 
are not the named addressee you should not disseminate, distribute or 
copy this e-mail. If you have received it in error please notify us 
immediately by telephoning 1300 55 77 11 and destroy this e-mail and 
any attachments. E-mail transmission cannot be guaranteed to be 
secure or error-free as information could be intercepted, corrupted, lost, 
destroyed, arrive late or incomplete, or contain viruses. The sender 
therefore does not accept liability for any errors or omissions in the 
contents of this message, which arise as a result of e-mail transmission. 
The content of this email is not necessarily that of the Dore Acievement 
Centres unless otherwise specified.  This email was scanned for possible 
viruses and was sent on 1/2/2005 by barry dot mather at dorecentres dot com dot au to m0n0wall at lists dot m0n0 dot ch