[ previous ] [ next ] [ threads ]
 From:  "Dennis Wallberg" <dennis dot wallberg at bredband dot net>
 To:  "'Martin Holst'" <mail at martinh dot dk>, <m0n0wall at lists dot m0n0 dot ch>
 Subject:  SV: [m0n0wall] Re: Firewall LAN -> LAN?
 Date:  Mon, 26 Apr 2004 16:10:47 +0200
Or setup VLAN on one switch as said earlier. 

-----Ursprungligt meddelande-----
Från: Martin Holst [mailto:mail at martinh dot dk] 
Skickat: den 26 april 2004 13:04
Till: m0n0wall at lists dot m0n0 dot ch
Ämne: [m0n0wall] Re: Firewall LAN -> LAN?

A sugggestion: If you just want firewalling between a few computers or a
few groups of computers in the same subnet, how about bridging?

Bridge e.g. LAN, OPT1 and OPT2. They'll all use the same subnet,
DHCP-server and so on - but you'll have the possibility of setting up
firewalling between them.
AFAIK there's no limit to how many interfaces you can bridge. So you can
basically have as many transparently separated groups as you have inside
Only problem is that you'll need a switch for each group.


One last thing...

If I were to setup separate VLANs on our switch would the traffic then 
get routed through m0n0?


Travis Bell
Hosting. Simplified.

On 23-Apr-04, at 10:44 AM, Christiaens Joachim wrote:

> You could try /32 subnetting on all hosts, which means that packets 
> will
> pass by the gateway for every other host. You will need another DHCP 
> for
> that and I don't know if it 'll work :)
> Joachim
>> -----Original Message-----
>> From: Travis Bell [mailto:travis at datahive dot ca]
>> Sent: vrijdag 23 april 2004 17:38
>> To: Christiaens Joachim
>> Cc: m0n0wall at lists dot m0n0 dot ch
>> Subject: Re: [m0n0wall] Firewall LAN -> LAN?
>> Thats kind of what I thought... I emailed Manuel and his VLAN support
>> isn't done yet because he hasn't got his Cisco in yet... ;(
>> Well, unless there is something that I am missing -- and someone out
>> there can point it out -- that's all I needed to know.
>> Thanks!
>> --
>> Travis Bell
>> Hosting. Simplified.
>> www.datahive.ca

To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch