DO NOT HI-Jack someone else's questions, compose your own.
On 7/25/06, Eugen Leitl <eugen at leitl dot org> wrote:
> On Tue, Jul 25, 2006 at 01:33:21PM +0100, Tim Vaughan wrote:
> > Thanks for the reply - no, the 2424M is a plain old 10/100 switch. I
> > got it off Ebay in order to learn how to set up VLANs but so far
> > haven't got past this problem :(.
> I have an unrelated question: I have a managed switch (with an IP
> for administration). I would like to use a mini-ITX system with
> two NICs as a firewall. If I'm to define a port 1 (where the switch
> is connected to the router) and port N on the mini-ITX as belonging
> to the same VLAN, and port M on the mini-ITX as well as everything
> else on the network belong to another VLAN, then I should be able
> to 1) use the mini-ITX system to protect any system but the switch
> IP 2) by removing the VLANs I should be able to recover from a
> misconfigured or defect firewall.
> Is this correct thinking?
> If I do the above, can I still do VLAN isolation of each
> individual host on the switch? (how?)
> Eugen* Leitl <a href="http://leitl.org">leitl</a> http://leitl.org
> ICBM: 48.07100, 11.36820 http://www.ativel.com
> 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v188.8.131.52 (GNU/Linux)
> -----END PGP SIGNATURE-----
"Nothing on earth can overcome an absolutely non-resistant person."