Hello,
Ok this might be a little bit of a stupid question for those who are
very versed within networking, but for me, I have not done a lot of
networking and this is the first time I have a /29 block of IPv4 WAN
addresses.
All these addresses should in theory be assigned to pppoe0 (provided
that the pppoe is working correctly). The list of addresses assigned by
ISP contains:
- 81.187.86.85/32 (NAT on WAN interface)
- 217.169.18.56/29 (assignable, no NAT)
- 2001:8b0:57a::/48 (assignable, IPv6 shouldn't be NATd)
The following rules should be adhered to:
- assignable addresses are NOT NAT'd
- any unsigned addresses, traffic should be blocked (both ways), to
prevent auto assignment of ip addresses (a few people I know share some
resources on the network, I do not want them assigning addresses from my
block unless I allow it).
- Machines selectively assigned with IPv6 addresses, any unused
addresses should be blocked!
I only have two interfaces, macros have been defined for them already,
wan and lan, these should be self explanatory. I have heard in order to
have separate NAT and non-NAT traffic you need a third NIC to be able to
do that, but I would rather stick with 2 nics, I cant afford a third,
and it would shell the speed of the other two.
Any suggestions of how I can implement this network would be helpful.
Thanks,
--
Polarian
GPG signature: 0770E5312238C760
Website: https://polarian.dev
JID/XMPP: polarian@polarian.dev
No comments:
Post a Comment