[Ilugc] Reliance Leave Line Setup
- From: mohan.tux@xxxxxxxxx (Mohan Sundaram)
- Date: Thu Apr 29 18:23:36 2010
On Thu, Apr 29, 2010 at 5:45 PM, Girish Venkatachalam <
girishvenkatachalam@xxxxxxxxx> wrote:
Your mail was confusing. I read it few times to understand.
+1
Lan IP: 115.248.77.48/29
( 49,50,51,52,53,54 )
I don't understand this at all. These are not LAN(RFC1918) IPs.
LAN IPs are private IPs that are either 192.168/16 or 172.16/12 or 10/8.
I have setup the system ip which was given by them, as well as dns and
gateway.
Try pinging the gateway after assigning the IP address.
They have provided extra six static ipaddress. When I do ping or ssh it
has
to perform the operation from outside network to six static ip address
including system ip.
What?
I can see the six LAN IPs you mention. But they cannot be used since
they lie on a different network. Look at this.
I'm hazarding a guess here.
What I think the OP means is that Reliance is routing 2 subnets
115.248.76.24/30 and 115.248.77.48/29 to this link. If this is so, the WAN
link must have one IP address in each of these subnets.
Like the case below, a similar set needs to be set for the second subnet
Wan IP: 115.248.76.24/30 and 115.248.77.48/29
System IP: 115.248.76.25 and 115.248.77.49 (example)
Netmask : 255.255.255.252 and 255.255.255.248
Gateway: 115.248.76.26 and 115.248.77.<gwip last octet> (to be given by
Reliance).
Once this is done, set up DNAT for the available 4 IPs in the
115.248.77.48/29 subnet to internal systems. Like some one pointed out,
mapping external IPs to internal LAN IPs means these internal systems need
to be fortified well. Please be careful. One good option will be to
expose/install only secure services and maintain strict vigil.
-- Mohan Sundaram
Other related posts:
