Hi,
I need to create a network bubble..means..Let say I have 4 machines having IP address 10.1.1.1,10.1.1.2, 10.1.1.3 and 10.1.1.4 (these are not actual IP's, using them just for explaining). These machines are connected to public network. At a given point in time, I need to isolate these machines from the public network in a way where
- All these 4 machines can talk to each other using the assigned IP's.
- These 4 machines cannot talk to any other nodes in the public network. no other machines outside these 4, will be able to ping these machines.

Looking for a generic solution which would work across all Unix,linux,windows platforms.

Please help.

Regards,
Ranjit

config t
interface wanX/Y
shutdown
end

hi,

Thankyou for the prompt response.
I believe your suggestion is to make physical changes on the switch. Not sure if i understood it. sorry for that.
My need is not to make any physical changes, rather get the required network isolation created using some tools/networking commands/modifying some networking files at runtime and after the purpose should be able to revert it to the original.

Thanks & Regards,
Ranjit

When you say public network do you mean that there are other machines on the same network as these 4 machines? For example 10.1.1.5/24 and 10.1.1.6/24 would be considered the same network as 10.1.1.1/24, 10.1.1.2/24, etc. If no, then just remove the default gateway/route from the workstations you want to isolate. If yes, then use some software firewall on each workstation to limit inbound and outbound traffic to whatever you want for however long you want.

_________________
"See packet, be packet, you are packet. Ignore all else!" -The Networker
packetsdropped.wordpress.com