LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 09-23-2005, 08:41 AM   #1
cjewell
LQ Newbie
 
Registered: Sep 2005
Posts: 1

Rep: Reputation: 0
DMZ on the same box as network router


Hi,

I have a slightly tortuous networking problem. My ADSL broadband connection comes into my house in the ground floor front room. The office is in the back top floor bedroom. I currently have a hardware ADSL wireless router connected to the phone socket in the front room that links up to the back bedroom. From there, I have a wireless card in the back of one Linux box . The link operates on the 192.168.1.0/24 network.

I also have two other machines plugged into the back of the Linux box via cross-over LAN cables. These machines work on the 192.168.0.0/24 network. The Linux box routes packets between the two networks to give internet access to all machines. The ADSL router is using NAT to connect to the internet.

However, I have (at another location) another Linux box which acts as an ADSL router/server. This box, apart from running a NAT ADSL routing service to the simple network behind it, runs things like my webserver, ftp, DNS, mail etc etc. This network is soon to be closing down though.

Since this other Linux box is old, I'm interested in using the Linux box (ie the one with the wireless card) to provide all the web services that the 'other' Linux box currently supplies. Since it runs so many services, it seems silly to implement destination NAT on each service on my hardware ADSL router. Thus, I'm keen to put the web services in some kind of demilitarised zone (DMZ) in order to allow the box to manage it's own firewalling etc.

What is the best way to do this bearing in mind that this Linux box also acts as the network router? Could I alias the wireless card with another IP that can be used for the DMZ? Is it sensible to use the box for the DMZ? Essentially, I want the one Linux box to act as an internal network router, but also as an external server - is this possible?

Any ideas very gratefully received!

Chris
--
Do I even make sense?
 
Old 09-24-2005, 01:27 AM   #2
PenguinPwrdBox
Member
 
Registered: Oct 2003
Location: /illinois/chicago
Distribution: Slackware/Gentoo/FC/RHEL
Posts: 568

Rep: Reputation: 30
What you are trying to do is really easy.

You can either use the DMZ function on the aDSL modem to set the server/router as the DMZ host, and firewall at the machine - or you can disable NAT on the modem altogether and implement it at the server itself.

iptables is your friend

Last edited by PenguinPwrdBox; 09-24-2005 at 01:34 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Small linux box as a wireless router/home network ideas enine Linux - Wireless Networking 16 05-09-2006 10:25 PM
Making a linux box router with only one network card srinivasarajui Linux - Networking 12 09-28-2005 12:03 PM
noFTP acces via Internet on Debian 3.0 box on a LAN network with Netgear rp614 router ferry Linux - Networking 2 08-16-2004 01:33 AM
DMZ and ADSL router question mazzo Linux - Networking 1 03-03-2004 03:36 PM
Fwall/Router Network Appliance vs. stock mdk9 Fwall/Router box jqpdev Linux - Networking 2 02-28-2003 08:19 AM


All times are GMT -5. The time now is 07:52 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration