Bringing 3 networks together? [message #5712] |
Mon, 28 August 2006 19:00 |
Thomas Rasch
Messages: 2 Registered: June 2006
|
Junior Member |
|
|
Hello,
I have some rather complicated plan on how to setup my hosts, and I
would like to know
a) if its possible at all,
b) if its feasible
c) and how to actually set it up, because I've been working on it for
quite a while but can't find a satisfying solution.
The plan would be:
- all the hosts are in one (and only one) internal network, say
192.168.0.0/24 (the management network)
- all (or most of) the VPSs on those hosts are in another network,
192.168.10.0/24 (the database network)
- some of the VPSs also have external (public) IP addresses (for
example webservers and so on)
I would like to separate the hosts from their VPSs as much as
possible, but so far I couldn't get it to work without giving the
hosts public IP addresses, what I want to avoid.
Therefore I'd really appreciate some feedback on this, if its
possible or a rather dumb question and on how I might get the routing
work (if its not a dumb question... :).
Many thanks for any help and hints!
Thomas
|
|
|
Re: Bringing 3 networks together? [message #5720 is a reply to message #5712] |
Mon, 28 August 2006 20:59 |
Paul Stuffins
Messages: 6 Registered: July 2006
|
Junior Member |
|
|
Thomas Rasch wrote:
> Hello,
>
> I have some rather complicated plan on how to setup my hosts, and I
> would like to know
> a) if its possible at all,
> b) if its feasible
> c) and how to actually set it up, because I've been working on it for
> quite a while but can't find a satisfying solution.
>
> The plan would be:
> - all the hosts are in one (and only one) internal network, say
> 192.168.0.0/24 (the management network)
> - all (or most of) the VPSs on those hosts are in another network,
> 192.168.10.0/24 (the database network)
> - some of the VPSs also have external (public) IP addresses (for
> example webservers and so on)
>
> I would like to separate the hosts from their VPSs as much as
> possible, but so far I couldn't get it to work without giving the
> hosts public IP addresses, what I want to avoid.
> Therefore I'd really appreciate some feedback on this, if its possible
> or a rather dumb question and on how I might get the routing work (if
> its not a dumb question... :).
>
> Many thanks for any help and hints!
>
> Thomas
the first 2 are possable as long as you have set the nodes up correctly
and the 3rd should be possable although I am not sure how to set this up.
I only have 1 IP and change the port SSH listens to and then I route via
NAT. thatworks well due to it being a small development network.
Paul
|
|
|
Re: Bringing 3 networks together? [message #5729 is a reply to message #5712] |
Tue, 29 August 2006 09:51 |
dev
Messages: 1693 Registered: September 2005 Location: Moscow
|
Senior Member |
|
|
Thomas Rasch wrote:
> Hello,
>
> I have some rather complicated plan on how to setup my hosts, and I
> would like to know
> a) if its possible at all,
> b) if its feasible
> c) and how to actually set it up, because I've been working on it for
> quite a while but can't find a satisfying solution.
>
> The plan would be:
> - all the hosts are in one (and only one) internal network, say
> 192.168.0.0/24 (the management network)
> - all (or most of) the VPSs on those hosts are in another network,
> 192.168.10.0/24 (the database network)
> - some of the VPSs also have external (public) IP addresses (for
> example webservers and so on)
>
> I would like to separate the hosts from their VPSs as much as possible,
> but so far I couldn't get it to work without giving the hosts public IP
> addresses, what I want to avoid.
> Therefore I'd really appreciate some feedback on this, if its possible
> or a rather dumb question and on how I might get the routing work (if
> its not a dumb question... :).
>
> Many thanks for any help and hints!
your configuration is quite typical and doesn't require any special
configuration.
You just assign private IP addresses to host + some of your VEs (secure environments)
and global IPs to VEs which should be visible from internet.
No special tricks should be done, except for situations with complex network configurations
with routers etc. I guess it is not your case :)
Thanks,
Kirill
|
|
|