forum.excito.com

Hi,

I am a new happy owner of a B3 and I am facing my first network configuration question.

My network has this very simple topology: For now, I plugged my b3 on the lan port on the lan of the network, next to all the other computers plugged by ethernet or by wifi.

I have the opportunity to configure a "DMZ IP" on my router, that will forward all the incoming traffic to this particular IP. This IP has to be on the lan network.
Now my question is the following:
Can I plug at the b3 both on his LAN and WAN port on the lan network, and have it behave the same as if I was using it as a router.
Of course without routing, but I am more talking in term of security and open ports and the way it handle requests from inside and outside… !

If yes, is there some specific configuration to check before?

Thank you!

Victor

And connecting your Bubba directly to the net, in front of the router isn't an option?:

Internet <=> Bubba <=> Router <=> LAN

That would forego having top route all network traffic through your router to Bubba.

Sadly no, the router is a modem/router that handle also my phone line, tv, wifi, etc…
So the only thing I can do is to plug it behind.

I think I will just try to see if it works and check firewalling, I was hoping someone had some insight about it and ideas of where to check if there was some tweaking to do

Thanks!

Yes you can: But if you plug both the wan and the LAN ports into the switch, that isn't what you are doing...

The problem may be that victor also wants to use his router as a switch. I think the problem may be that bubba's wan and lan ports may not be on the same subnet.

Binkem wrote:The problem may be that victor also wants to use his router as a switch. I think the problem may be that bubba's wan and lan ports may not be on the same subnet.

Yes, it is exactly that?

For now, what I did is that I configured the B3 as Router/Server/Firewall and then I changed the configuration of the lan interface so that it gets its address by dhcp (I first needed to change the conf by hand in /etc/network/interfaces to be able to have the good ip address to be able login in the web interface with admin).

And it seems to work quite well, from outside it seems to behave as it should with respect to the firewall configuration and from inside all the activated services are visible!

Hi,

For the record I finally found a solution for this problem.

Short answer is that ARP is answering for all IP on all interfaces, so other computers are confused, this should be set in syctl to prevent it: More explanations there: http://serverfault.com/questions/22253/ ... 0648#30648

Thanks a bunch for letting us know!

"Who has 192.168.10.1?
I do!
I do!"

Hello

I did this too

Both ports of the b3 connect to the router. Wan port of the b3 is connected through port forwarding in the router to the outer world (email, web, download, ..) the lzn port is used by the media players as i need al the bandwidth the lan port for hd streaming. Works fine.

Rene