I have the following setup:
1 computer with 3 NIC (eth0, eth1, eth2) and 8 GB RAM ........
eth0 = for the management of Proxmox from LAN
eth1 = for the firewalls WAN-side (for IPCOP red interface)
eth2 = for the firewall LAN-side (for IPCOP green interface)
eth0 = 192.168.10.20/24 (management interface)
eth1 = 192.168.20.x/24 (WAN interface)
eth2 = 192.168.10.1/24 (LAN interface) and also the gateway for some computers
how do I set up the network cards (eth1 and eth2) correctly, so I keep the firewalls can be bypassed?
with the red interface of the IPCop firewall I go again on a hardware firewall (green interface). in the syslog from the hwfw I have found ip-addresses from LAN (green interface from IPCOP). how can I prevent this?
rosi
EDIT (output from tcpdump on wan-1)
tcpdump -nnvvi wan-1 src net 192.168.10.0/24
tcpdump: listening on wan-1, link-type EN10MB (Ethernet), capture size 65535 bytes
16:42:46.807598 IP (tos 0x0, ttl 127, id 3413, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58584 > 91.199.212.171.80: Flags [F.], cksum 0xde01 (correct), seq 575189750, ack 1981656055, win 63826, length 0
16:42:47.116677 IP (tos 0x0, ttl 127, id 3417, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58584 > 91.199.212.171.80: Flags [F.], cksum 0xde01 (correct), seq 0, ack 1, win 63826, length 0
16:42:47.123009 IP (tos 0x0, ttl 127, id 3418, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58585 > 216.246.119.175.80: Flags [F.], cksum 0x5ee6 (correct), seq 3988190235, ack 1990196676, win 63830, length 0
16:42:47.428675 IP (tos 0x0, ttl 127, id 3423, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58585 > 216.246.119.175.80: Flags [F.], cksum 0x5ee6 (correct), seq 0, ack 1, win 63830, length 0
16:42:47.725048 IP (tos 0x0, ttl 127, id 3425, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58584 > 91.199.212.171.80: Flags [F.], cksum 0xde01 (correct), seq 0, ack 1, win 63826, length 0
16:42:48.037040 IP (tos 0x0, ttl 127, id 3426, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58585 > 216.246.119.175.80: Flags [F.], cksum 0x5ee6 (correct), seq 0, ack 1, win 63830, length 0
16:42:48.926358 IP (tos 0x0, ttl 127, id 3428, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58584 > 91.199.212.171.80: Flags [F.], cksum 0xde01 (correct), seq 0, ack 1, win 63826, length 0
1 computer with 3 NIC (eth0, eth1, eth2) and 8 GB RAM ........
eth0 = for the management of Proxmox from LAN
eth1 = for the firewalls WAN-side (for IPCOP red interface)
eth2 = for the firewall LAN-side (for IPCOP green interface)
eth0 = 192.168.10.20/24 (management interface)
eth1 = 192.168.20.x/24 (WAN interface)
eth2 = 192.168.10.1/24 (LAN interface) and also the gateway for some computers
how do I set up the network cards (eth1 and eth2) correctly, so I keep the firewalls can be bypassed?
with the red interface of the IPCop firewall I go again on a hardware firewall (green interface). in the syslog from the hwfw I have found ip-addresses from LAN (green interface from IPCOP). how can I prevent this?
rosi
EDIT (output from tcpdump on wan-1)
tcpdump -nnvvi wan-1 src net 192.168.10.0/24
tcpdump: listening on wan-1, link-type EN10MB (Ethernet), capture size 65535 bytes
16:42:46.807598 IP (tos 0x0, ttl 127, id 3413, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58584 > 91.199.212.171.80: Flags [F.], cksum 0xde01 (correct), seq 575189750, ack 1981656055, win 63826, length 0
16:42:47.116677 IP (tos 0x0, ttl 127, id 3417, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58584 > 91.199.212.171.80: Flags [F.], cksum 0xde01 (correct), seq 0, ack 1, win 63826, length 0
16:42:47.123009 IP (tos 0x0, ttl 127, id 3418, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58585 > 216.246.119.175.80: Flags [F.], cksum 0x5ee6 (correct), seq 3988190235, ack 1990196676, win 63830, length 0
16:42:47.428675 IP (tos 0x0, ttl 127, id 3423, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58585 > 216.246.119.175.80: Flags [F.], cksum 0x5ee6 (correct), seq 0, ack 1, win 63830, length 0
16:42:47.725048 IP (tos 0x0, ttl 127, id 3425, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58584 > 91.199.212.171.80: Flags [F.], cksum 0xde01 (correct), seq 0, ack 1, win 63826, length 0
16:42:48.037040 IP (tos 0x0, ttl 127, id 3426, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58585 > 216.246.119.175.80: Flags [F.], cksum 0x5ee6 (correct), seq 0, ack 1, win 63830, length 0
16:42:48.926358 IP (tos 0x0, ttl 127, id 3428, offset 0, flags [DF], proto TCP (6), length 40)
192.168.10.231.58584 > 91.199.212.171.80: Flags [F.], cksum 0xde01 (correct), seq 0, ack 1, win 63826, length 0
Last edited: