LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 07-19-2004, 01:44 PM   #1
ivanp
LQ Newbie
 
Registered: Jul 2004
Posts: 7

Rep: Reputation: 0
Cool Emulation of vlans using DHCPD ???


Hi All !
I have some wierd situation an wondering if someone can help me.
I some hotel I need to connect 50 rooms on the unmanged switch (on vLans no filtering) and still not to allow to comunicate with each other. My gateway / firewall is Linux 2.4 and on it I need to implement:

- transparent proxy
- DHCP server
- bandwidth limiting.

Only solution I came up with is to add 50 IP aliases on internal interface and 50 DHCP zones (10.10.x.0 / 30) with 2 ip adresses. First for linux ip-aliased interface, and second for client.
As a ptables interface I will use shorewall and will define 50 zones and 50 rules for redirecting on squid proxy server.
I have done this before separetly, but I didn't expect to do something like this and it looks interesting but crazy. I have been searching internet for something like this and couldn't find a thing.
Pls if you have some suggestions tell me. Teoreticly it looks something it can be done. Feel fee to discourage me...saving my time

Stay well !

Ivan
 
Old 07-19-2004, 02:08 PM   #2
david_ross
Moderator
 
Registered: Mar 2003
Location: Scotland
Distribution: Slackware, RedHat, Debian
Posts: 12,047

Rep: Reputation: 79
Welcome to LQ.

Do you control the 50 clients or can anyone just plug in a machine?
 
Old 07-19-2004, 02:40 PM   #3
ivanp
LQ Newbie
 
Registered: Jul 2004
Posts: 7

Original Poster
Rep: Reputation: 0
These people are guests of hotel, so all kind of clients will be there. They will need to have automaticly assigned IPs, web and mail . Hotel has pretty low bandwith (256K or even less) so in all that mess I need to put proxy.
 
Old 07-19-2004, 02:44 PM   #4
ivanp
LQ Newbie
 
Registered: Jul 2004
Posts: 7

Original Poster
Rep: Reputation: 0
Actually these are my first postings at all..with a pretty bad english and typing.
 
Old 07-19-2004, 03:00 PM   #5
david_ross
Moderator
 
Registered: Mar 2003
Location: Scotland
Distribution: Slackware, RedHat, Debian
Posts: 12,047

Rep: Reputation: 79
If you don't have control of the client machines then there is really no way that you can force them to use DHCP. They will also be able to sniff out other traffic on your network. If you want true seperation then getting a vlan capable switch is likely to be your best solution.
 
Old 07-19-2004, 03:19 PM   #6
ivanp
LQ Newbie
 
Registered: Jul 2004
Posts: 7

Original Poster
Rep: Reputation: 0
I don't have control over that decisions and I know that is the best solution. If somebody is doing arp poisoning or man in the middle attack and/or changing IP that is the risk I need to accept. Client PCs should be secure enough - still I know it is not true. But I need to avoid most obvious way of seeing other PCs on the net by clicking on some icon like NetPlaces or so.
I need your opinion..is it possible to do it like this (50 ips - looks too much). I have fond for a good configuration of server (RAID 1, and mybe separate disk for cache). What do you think ...is there any other way to do it with this I have here?
10x for your interest !
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Arpwatch across VLANS? TotalDefiance Linux - Software 0 09-15-2005 10:19 AM
dhcpd subnet declaration problems in dhcpd.conf vcrispo Linux - Networking 6 07-15-2005 10:32 AM
creation of vlans Kike Linux - Networking 2 04-15-2004 02:12 AM
DHCPD startup failure, mdk 9.2, dhcpd v3.0.1rc11 fuzzyworm Linux - Networking 1 02-14-2004 03:58 AM
dhcpd.master or dhcpd.conf rickg Linux - Networking 0 04-11-2002 03:34 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 09:36 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration