Firewall Wizards mailing list archives
Re: Multiport NICs on FW1
From: Rob Poland <rob.poland () inet unisource nl>
Date: Fri, 9 Jan 1998 10:25:26 +0100 (MET)
I presume you are using one interface on the Internet and the others connected
to your INTERNAL NETWORKS.
Is it possible to 'firewall' multiple interfaces (connected to
different ISP's) to multiple interfaces on different Internal networks with a
one to one relationship, with each a seperate set of rules, on a FW-1 or any
other FW? Which hardware configuration would be suitable (multi-processor)? Any
experiences on performance and security issues?
ISP-1 ISP-2 ISP-3 .... ISP-n
| | |
| | |
| | |
-------- -------- --------
DMZ-1 | DMZ-2 | DMZ-3 |
--------------------------
| FW |
--------------------------
| | |
| | |
| | |
INTERNAL INTERNAL INTERNAL ..... INTERNAL
NETWORK-1 NETWORK-2 NETWORK-3 NETWORK-n
We currently use Sun Ultra's for all of our firewalls. I know we have at least one of them running with two FDDI boards and a quad ethernet board (we had to remove the graphics cards to accomplish this). I would assume you could use any combination. Chuck Statton GTE -----Original Message----- From: Dean Ethier <Dean_Ethier () dmr ca> To: fw-1-mailinglist () us checkpoint com <fw-1-mailinglist () us checkpoint com> Date: Wednesday, January 07, 1998 6:41 PM Subject: [FW1] Multiport NICs on FW1I know this question has been asked here already, but here goes again. I need to talk to people who have had success in setting this up. Specifically, I'm interested in finding out how many interfaces you've been able to set up on a single box. I would like to set this up on something like a Compaq PrLiant 800 running NT, but I'm not totally opposed to going Unix if I have to. TIA Dean Ethier DMR Consulting Group Ltd dean.ethier () dmr com
Current thread:
- Re: Multiport NICs on FW1 Rob Poland (Jan 09)