NETMAP and ARP
Nigel Morse
N.Morse@hyperknowledge.com
Wed, 18 Jul 2001 09:16:45 +0100
Lets say I use the NETMAP patch to map an entire class C network to a
192.168.1.x network, both DNAT and SNAT so to the outside world it appears
as 1 network, with a setup as below (assuming allocated class C is
10.0.0.0/24)
--- Router --- Firewall --- internal network
10.0.0.1 ext: 10.0.0.2 192.168.1.0/24
int: 192.168.1.3
so all hosts behind firewall will have a host address from 4 upwards.
For this to work I need to have the firewall handle ARP for every host
behind the firewall. Is handling ARP for perhaps 100 machines going to be a
problem? On top of firewalling etc.
Cheers
Nigel