[ale] HELP, need to setup wireless access point!

David Tomaschik david at systemoverlord.com
Fri Feb 4 14:35:54 EST 2011


I only wish NAT had never been invented.  NAT has caused me more headaches
that I can imagine, and here at work, we have them doing some things that
I'm pretty sure is never supposed to happen.  Some of the workstations here
at work are on one of a few dozen 10.x networks, but they're only NATted
leaving campus.  They're routed throughout the campus.  So if someone on
campus accesses a server on campus, the request comes in directly from their
10.x.x.x IP.  This gets real dicey for trying to implement SSO solutions
that use the source IP as part of the session when the SSO system has to
talk to off-campus systems.  So the SSO server sees 10.x.x.x, but the
off-campus computer sees AAA.BBB.x.x from the NAT gateway.  Now, I'm just a
sysadmin, not a networking guy, but something seems very wrong about having
traffic from both RFC 1918 address space and world-routable address space on
the same interface.


-- 
David Tomaschik, RHCE, LPIC-1
GNU/Linux System Architect
GPG: 0x5DEA789B
david at systemoverlord.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.ale.org/pipermail/ale/attachments/20110204/260c2f69/attachment-0001.html 


More information about the Ale mailing list