Stephen <sweh@mpn.com>
Casper Dik <casper@holland.sun.com>
Scott Woods <sfw@adc.idt.com>
Benjamin Cline <benji@hnt.com>
The Question:
-------------
Is variable-length subnet masking (VLSM) not supported until
Solaris 2.6? Or are there any workarounds/patches for earlier
versions?
I am looking at putting a Solaris-based webserver on the DMZ of
an NT-based FireWall-1 setup, and am wondering if I will need to
use an entire subnet for it.
The Summary:
------------
Solaris versions before 2.6 can use non-class A/B/C subnet masks
on local networks only, since the route command has no provision
for a subnet mask to be specified. So a Solaris-based webserver
should be just fine with a partial subnet mask (specified with
ifconfig), since it's not doing any routing. In fact, you should
be able to split a class C subnet between the outer and DMZ
subnets on a Solaris-based Firewall-1 box as well, as long as
any non-local internal networks have standard netmasks.
Derek Schatz
Derek_Schatz@amat.com