[Novalug] multihomed linux router with public ip addresses
Miguel González Castaños
miguel_3_gonzalez at yahoo.es
Tue Apr 27 10:25:01 EDT 2010
> BTW, I should have mentioned, one can also use public IPs in the DMZ,
> and use the security appliance as a direct, public router, instead of a 1:1
> NAT or DNAT. But the DMZ can also be private IPs as well.
>
But how? If you use two IPs of the same subnet in the linux router, you
get two routes in the routing table for that subnet that are forwarded
to different interfaces. It's what I said in my first message. Let's say
eth2 - 80.35.2.3 - facing to the Internet
eth0 - 10.30.1.1
eth1 - 80.35.2.2
if you run netstat -rn you get two routes for 80.35.2.0 that are routed
to eth2 and eth1
Miguel
More information about the Novalug
mailing list