MASQD over PPP, but with 2 Valid IP's

Greetings,

I would like to set up a linux box with 2 valid ip's. the 1st ip would be for a 192.168.1.0 network, and the 2nd would be routed to a Linux or NT Box(192.168.2.0) over a network card. Can this be done? Will Routing the 2nd ip to the linux/nt box conflict with the 192.168.1.0 network?

here is a diagram:

            |-------|
            | ISP   |
            |-------|
            []
      ISDN      []
            []
            [](ppp0 with a valide class C IP)
      |------------|
      |Linux  Box  |
      |------------|
MASQ NIC  []      [] 2nd NIC With a valid Class C (eth1)
192.168.1.0      []
            []
            []
            |---------------------|
            |Linux or NT Masqd box|(192.168.2.0)
            |---------------------|


is this possible?

thanks

karl
screenAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

sauronCommented:
Yes, it's possible. I'm not clear on exactly what you want from your post, but you can set this sort of thing up. You can have a Linux box, with 2 NIC's, and for example give them 192.168.1.1 and 192.168.2.1 as addresses. You set the subnet mask for both to 255.255.255.0, and you can route between the two cards by simply enabling routing in the kernel. Then, you can add a ppp device, and use a valid class C from your ISP on this.

You then compile masquerading support into the kernel, and you use the firewalling rules to specify the masquerade policy, so you can specify that packets from the 192.168.1.0 network are masqueraded, but packets from the 192.168.2.0 network are not, or are blocked, or whatever you like.

This is all set up using ipfwadm rules. You'd probably also want dial on demand support, recent versions of pppd support this, but you might also want to look into diald, which can be found at

http://www.loonie.net/~eschenk/diald.html

though it seems to be down at the moment.


0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
screenAuthor Commented:
yea But What about 2 valide class C's? What i need is 2 webservers (port 80), each on their 192.168.x.0 network. The Router would route(or in this case port forward) the 1st ip to 192.168.1.0, and the 2nd ip to 192.168.2.0.

now ppp0 has 1 ip(in this case an ISDN line), howdo i "mount" the 2nd IP.

I think i can use IPFWADM to control which MASQD packet's goes to.

karl
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Linux Networking

From novice to tech pro — start learning today.