Multiple IP's don't give separation of traffic except by layer 3 route, which
is easily defeated. VLAN's aren't foolproof either, but getting around one of
those will typically require exploiting a bug or hole in some level of the
network itself rather than changing an IP address or next-hop route (assuming
your network is well built and secure to begin with, which is outside the scope
of this thread).
- Ralph
Bill Smith wrote:
Hi Sin,
Thanks for reply. But it sounds like a multihome IPs
to me.
Having a single network card with multiple IPs.
What good does VLAN do in here?
Cheers,
Bill
--- sin <sin@pvs.ro> wrote:
Bill Smith wrote:
Hi folks,
I do understand about VLAN in the switches
environment, but a bit
confused about VLAN in SPLAT.
Can anyone explain, what exactly VLAN is used for
in SPLAT and give me
an example.
VLAN in SPLAT is done by the underlying OS (mainly
using vconfig and
8021q kernel module).
an example of using VLANs in SPLAT would be to have
let's say different
DMZ zones wihout having to have a physical interface
in the firewall for
each zone.
be aware that if you want to use VLANs in SPLAT for
NG-AI R55 you have
to assing an IP address to the physical interface
you wish to attach
VLAN subinterfaces to (if you don't do that,
sysconfig won't let you
create VLAN interfaces).
sin
__________________________________
Yahoo! Mail - PC Magazine Editors' Choice 2005
http://mail.yahoo.com
--
Skinny Motorsports, Inc. -- www.skinnymotorsports.com --
- Colorado's retail and trackside dealer for Komodo gear
- Your source for laptimers and data acquisition equipment
- Aftermarket and OEM parts and performance accessories
Main: 720-249-4791 / Fax: 720-249-2455
Email at: rforsythe@5280tech.com
