Koozali.org: home of the SME Server
Legacy Forums => Experienced User Forum => Topic started by: damjan on March 03, 2004, 02:16:46 PM
-
Hi,
On sme 5.6 I added additonal network 192.168.2.0, 255.255.255.0, gw 192.168.1.1. This was made for some additional users only.
Sme is setup to work on network 192.168.1.x. The same is with the other users/desktop stations.
I would like to achive that additonal local network use web services from sme only (web,mail etc) and have no contact with network 192.168.1.x (neither ping).
Is this thing possibile with sme 5.6?
br
Damjan
-
Hello,
Try modifyin your network mask.
If you change it for 255.255.253.0, it give you a range from 192.168.1.0 to 192.168.3.254.
Regards
-
Hi,
Thank you for your replay.
:Try modifyin your network mask.
network mask from aditional network or from SME server configuration?
:If you change it for 255.255.253.0, it give you a range from 192.168.1.0 to 192.168.3.254.
To clear my sitation a bit:
SME has 192.168.1.1 /255.255.255.0
users has 192.168.1.10/255.255.255.255.0
192.168.1.11/255.255.255.255.0 ...etc.
Adding local network
192.168.2.0 /255.255.255.0
gateway : 192.168.1.1
will give me range for users within 192.168.2.1 till 254
so far so good...
Users on 192.168.2.0 network will use gateway 192.168.1.1 to reach internet services, but unfortunately they will also be able to ping/see users on 192.168.1.0 network.
I would like to avoid that. I need to add 192.168.2.0 network and just use 192.168.1.1 for internet services. Seeing 192.168.1.0 network should be avoided.
Maybe some IP tables rules should also be a solution to block transfer among the two networks (just allow 192.168.1.1 to act as a router)?
br
Damjan
-
if you need two different (seperated) networks, where the one network can't see the other network, you will need a hardware-router.
cheers
-
And if you want a really good software platform to do the routing check out www.mikrotik.com