On Thu, 3 Nov 2011, Lorenzo Martínez Rodríguez wrote:
El 03/11/11 11:16, News escribió:
Hi all, I haven't found anything in Google about this.
I'm creating a firewall router with Centos with few virtual IP using iptables.
May I ask for your experience? Is there any pitfall or bad side of using virtual IP for this purpose? I'm using few virtual IP to accommodate few subnets that go through this firewall/router.
I would not know why there would be a problem. My external interface on my iptables firewall has 30 ip addresses on it. Been running it that way for 8 or 10 years.
I use Firewall Builder http://www.fwbuilder.org to manage the ruleset and I am very happy with it.
+1 for fwbuilder. I have been using it since it was version 1.x. It is now 5.x and you would be hard pressed to pry it out of my cold dead hands. :-)
Besides the fact that the program does a very good job of managing iptables firewalls, the devs are very responsive to bug fixes and feature enhancements.
Regards,