Thanks to the very helpful folks on the lists. Particularly
Rob, Alexy
and Peter.
Perhaps I was over-thinking the network thing a bit. As
per universal
recommendation, I removed the gateway from the
second sorta-internal ifcfg-eth1 file and restarted
networking. I can
still get to the places I need to reach. The second
network is much more of an internal network. So that is
cool.
I am concerned/interested in Peter Larsens' comments about
dual-homing
with another private network. He is right
that a dual-homed box of this sort could be used as a bridge
between the
two. That is not what I want. In the very
near future we will be joining a large academic network of
colleges and
universities that really should not bridge
into the public internet. I will follow Peters advice and
get
appropriate permissions and then I will most likely
return to my custom linux kernel iptables method of
separating the two
if one of my boxes is chosen to a member
of this working group (there is a good probability that it
may). Is the
iptables approach the preferred method for
doing such a dual-homed (in the new case, tri-homed) system?
Thank you again, as always. The LUGs are a wonderful
resource.
BTW, I was using the letters ARP as in Advance Routing
Protocol. That
seems to be wrong. The linux "man arp"
did not specify what arp stands for. Any folks out here
know?
megan
--
Megan Larko, IT Systems Administrator
Center for Research on Environment & Water (CREW)
4041 Powder Mill Road., Suite 500
Calverton, MD 20705-3106
_______________________________________________
dclug mailing list
dclug tux.org
http://www.
tux.org/mailman/listinfo/dclug
|