Go Premium for a chance to win a PS4. Enter to Win


TCP/IP Networking Question

Posted on 2000-04-12
Medium Priority
Last Modified: 2013-11-29
I work in a building that is currently connected to the internet via a router we are being told that we cannot have TCP/IP networking on our machines because our company has run out of IP addresses for our machines.  Our current solution to the problem is that we use an instant internet box which has IPX/SPX winsock client on one side and its own IP address on the internet side of the box.  Is there no simple solution that allows us to use any IP addresses on our clients and have a box/machine that acts as a gateway to the internet?  I have a linux server running so if there is a software solution that could be sat on the server (the server becoming the a gateway via two network cards)
Question by:Steves2001
  • 2
  • 2
LVL 40

Expert Comment

ID: 2709029
To suggest the best solution I need to know how many "public" IP's could be allocated for the buildings use. If only one, then IPMasq/ipchains on a Linux box could be used to masquerade your entire building onto a single outside IP. If there is a block of IP's that could be used, ipfilter running on FreeBSD, OpenBSD or Solaris could be used for dynamic NAT.

Sounds like you organization needs to "re-design" their network and NAT everything using a private Class B or Class A.

Author Comment

ID: 2709423
The difficulty has been that we are a college in the UK who benefit from a link to a university who in turn links to JANET which inturn links to the internet.

Our main IP network is a subnet of the universities IP network and our building currently assigned a single IP address due to the way in which IP's have been allocated (randomly) until we ran out . SO yes it is a mess, my problem is that I have to do something with that IP we have so that we can run courses within the building (Java networking stuff) I can do pretty much what I like in the building as long as I don't affect the main network.  If I can show them a working system within the building I could then move on to getting them to take it on board for the whole college.

Anything you can suggest would be greatly appreciated The server I am using at the moment is RedHat 6.0.

Even if you only point me to some sites or books where I can read up about above it would be a help actual configuration info and software locations would be brilliant.


Stephen Smith

Expert Comment

ID: 2709627
What you need to research for is NAT - Network Address Translation. As JLevie points out, this would be a solution that would allow you to have a single IP address on the outside, and instead of having to use IPX/SPX inside, you'd use a block of Private IP addresses, such as: Mask (Class A) to Mask (Class B) to Mask (Class C)

Your device (usually some type of router, even if just Linux functioning as one) will convert between the internal IPs and the external one.

If you guys are small (about 30 or so machines) you can try a Internet Router by LinkSys (possibly others available, I don't know). It costs about US$200 and provides NAT and DHCP for your entire network. Plus, it's a four port 10/100 Switch.

Here's a good text on NAT.


Cisco's overview is also pretty good:


Here's a technical discussion on NAT, if you get curious:


Good luck,

LVL 40

Accepted Solution

jlevie earned 400 total points
ID: 2710365
Id suggest an upgrade to 6.1 or 6.2 (better) as I think you'll find that it'll work much better as an IPMasq box Which is what you need to funnel a private network into a single external IP. Technically, that's Network Port Address Translation or NPAT.

The subject, from a Linux perspective, is covered pretty well in the IP-Masquerade & IPCHAINS Howto's at http://howto.tucows.com/LDP/HOWTO/HOWTO-INDEX-3.html#ss3.1. It's not that hard to set up if you don't need a lot of security rules or special inbound services. NPAT in general is limited as to what can be done w/respect to inbound services as there's only the one external IP. Network Address Translation (NAT) using an external IP pool of address is a lot more flexible in that regard.

Author Comment

ID: 2711457
Thank you very much for your help you both have given me pointers as to where to go next.

Featured Post

Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Make the most of your online learning experience.
This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

879 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question