[CentOS] Centos Firewall - router with virtual IP

Thu Nov 3 22:14:14 UTC 2011
me at tdiehl.org <me at tdiehl.org>

On Thu, 3 Nov 2011, Lorenzo Martínez Rodríguez wrote:

> El 03/11/11 11:16, News escribió:
>>> Hi all,
>>> I haven't found anything in Google about this.
>>> I'm creating a firewall router with Centos with few virtual IP using iptables.
>>> May I ask for your experience?
>>> Is there any pitfall or bad side of using virtual IP for this purpose?
>>> I'm using few virtual IP to accommodate few subnets that go through
>>> this firewall/router.

I would not know why there would be a problem. My external interface on my iptables
firewall has 30 ip addresses on it. Been running it that way for 8 or 10 years.

> I use Firewall Builder http://www.fwbuilder.org to manage the ruleset
> and I am very happy with it.

+1 for fwbuilder. I have been using it since it was version 1.x. It is now 5.x 
and you would be hard pressed to pry it out of my cold dead hands. :-)

Besides the fact that the program does a very good job of managing iptables 
firewalls, the devs are very responsive to bug fixes and feature enhancements.


Tom			me at tdiehl.org		Spamtrap address	 		me123 at tdiehl.org