Advertisement

04.01.2008 at 01:40PM PDT, ID: 23287194
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!
9.8

tcp/ip routing question

Asked by Xitron in TCP/IP, Network Switches & Hubs, Network Operations

Tags:

I have a LAN whose IP setup is 10.0.20.0/24.  I have a printer, 10.0.20.30 which I need to firewall away from the rest of the LAN, but without changing its IP address.

I've managed to do this by creating an iptables firewall with an external (switch facing) IP of .5 and an internal (printer facing) IP of .6.  All traffic to and from the printer must go through the firewall.  I've added a route statement to the firewall:
  route add 10.0.20.30 gw 10.0.20.6
...and the firewall can easily communicate with the printer.

But for the PC's on the LAN, the situation is very different: the client has to have - on their PC - a routing statement of:
  route add 10.0.20.32 gw 10.0.20.5
... or on a windoze machine...
  route add -p 10.0.20.32 10.0.20.5

My default gateway for my LAN is an Endian firewall.  I've added that route statement to it, but without helping the PC's to find the printer.  Unless the PC has a route statement on its own routing table, it cannot find the printer.

This seems like a simple thing.  How do I get the entire LAN to know that in order to find 10.0.20.30 they need to talk to 10.0.20.5 without having to manually add this routing statement to each and every PC?  What critical piece of information am I missing?

I guess I could assign the external IP an additional address of 10.0.20.30 and do some fancy firewall stuff to redirect requests for that IP to the server behind it, but if there's an easier way, I'm game.

Thank you!

Unca XitronStart Free Trial
[+][-]04.01.2008 at 01:48PM PDT, ID: 21257965

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: TCP/IP, Network Switches & Hubs, Network Operations
Tags: tcp/ip routing question
Sign Up Now!
Solution Provided By: a-mccrea
Participating Experts: 2
Solution Grade: A
 
 
[+][-]04.01.2008 at 01:49PM PDT, ID: 21257970

Assisted solutions are selected by the member who asked the question as a comment that contributed to their question's solution.

Start your 7-day free trial to view this Assisted Solution or ask the Experts your question.

 
[+][-]04.01.2008 at 01:53PM PDT, ID: 21257998

Assisted solutions are selected by the member who asked the question as a comment that contributed to their question's solution.

Start your 7-day free trial to view this Assisted Solution or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628