routing multiple ips - help me!
Peeps,
I've a business account with 6-7 public Ip addresses and I want to route the extra ip addresses without compromising the security. I've a Dlink 504 modem+router (192.168.0.6 say) which says it has got multi nat but there is no documentation. I've two linux machines on the lan with just one NIC each (say 192.168.0.45 & 46). I'm using NAT to map the primary public IP to access the machines from outside the Dlink. Now the trouble is how to route the extra public IP address.
1) Should I configure IP aliases on the linux boxes to add 10.0.0.45 & 46, make the int IP of Dlink 10.0.0.6 and then make the machines DMZ? I can use Iptables to block anything suspicious coming on 10.* network. Any internal communication between the machines can take place on 192.* network. Is this safe?
2) Or should I configure the IP aliases on the linux boxes as PUBLIC IP addresses, and disable NAT?
3) Or should I buy another NIC for each machine?
4) Or Should I buy additional routers (say belkin), make it's IP address as external public IP and then port forward it to the machine.
5) I can get another linux box to sit in front of mach 1 & 2 and act as a router with multiple aliases but I don't have the money.
Dlink's multi NAT is a nightmare. How do you route multiple public ip addresses?
help?
Thanks
|