Koozali.org: home of the SME Server

Obsolete Releases => SME Server 7.x => Topic started by: dovad on July 17, 2007, 05:37:49 AM

Title: multi LAN support???
Post by: dovad on July 17, 2007, 05:37:49 AM

I did a search on the forum to try to figure out if SME Server supports additional LAN segments and found mostly very old postings on the subject.  I'm wondering in recent times if this capability has been added to SME?

Thanks...

Title: Re: multi LAN support???
Post by: TrevorB on July 17, 2007, 06:43:16 AM

Quote from: "dovad"

I did a search on the forum to try to figure out if SME Server supports additional LAN segments and found mostly very old postings on the subject.  I'm wondering in recent times if this capability has been added to SME?

Hmmm.. depends on what you mean by 'supporting additional LAN segments'? If you could be a little more specific about your requirement, we may be able to guide you in the right direction.

smeserver supports additional subnets being treated as local via the Security/Local networks panel within server-manager (Local Networks (http://wiki.contribs.org/SME_Server:Documentation:Administration_Manual:Chapter11#Local_networks))

This can also be accross a VPN (either via pptp 'out-of-the-box' or via OpenVPN (http://forums.contribs.org/index.php?topic=33043.0))

Trevor B

Title: multi LAN support???
Post by: dovad on July 18, 2007, 02:45:50 AM

What I mean by "LAN Segments" is to have separate NIC cards for ie.

A trusted segment such as 192.168.0.0

An untrusted segment for perhaps a wireless LAN on 192.168.1.0

A DMZ LAN on 192.168.2.0 for servers more exposed to the Internet

all the above to maintain a high level of security for the trusted segment.

Thanks for your help...
Dave

Title: multi LAN support???
Post by: TrevorB on July 18, 2007, 08:30:13 AM

OK, now we know.... , but unfortunately the answer is no.

smeserver is primarily a sme (small to medium enterprise) server which can also act as a firewall / gateway (offering file sharing, web/ftp/mail serving, VPN etc.). It is not a specialised firewall appliance offering red/orange/blue/green interfaces.

I'm sure that with the right set of templates you could add a second or third 'untrusted' segment, but there is nothing I know of that will give it to you easily.

Good Luck in your quest
Trevor B

Title: multi LAN support???
Post by: belyache on July 19, 2007, 10:02:21 PM

I have done a little work on this.... e-mail me

belgarion19_99 at y a h o o d o t com

Title: multi LAN support???
Post by: CharlieBrady on July 19, 2007, 10:58:42 PM

Quote from: "belyache"

I have done a little work on this.... e-mail me

belgarion19_99 at y a h o o d o t com

belyache, please post your work on the wiki, or as attachments to a New Feature Request in the bug tracker. Thanks.