Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: firewall_¬_router

From: Avishai Wool <avishai_w () yahoo com>
Date: Wed, 25 Jul 2001 16:01:42 -0700 (PDT)
you can do either, it's your choice.
either leave NAT on the router and configure the
with all private IP addresses, or move the NAT
off the router and onto the firewall. from the
information you provided I don't see any difference
in the security you would be gaining, so choose based
on the level of effort required and the ease of 
maintenance later.

Avishai

--- MANUEL GARCIA-CERVIGON <mgarciac () ac upc es> wrote:

I need to build a firewall as soon as posible. But, I've got a big
problem...
   we have private IP addresses  in
network (192.168.1.0/24) and one cisco router to pass through our
internet
traffic making NAT.
   I plan to put a unix system's firewall (netfilter) in my local
network to
protect
my several servers and split the actual network into 3 networks
(192.168.1.0/24) ,(192.168.2.0/24) ,(192.168.3.0/24)
When I install the firewall, will I have to do nat in the firewall or
in the
router?how?
Thanks,

The skeme is below:
-------------         -------------         ----------------------
| Router | ------ | Firewall | -------| Local Network|
                                    --------    | Local Network|
                                    --------   1Local Network|

-------------        --------------         ----------------------

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards



=====
Avishai Wool, Ph.D.,  Chief Scientist & Co-Founder, Lumeta Corp.
220 Davidson Ave, 4th Floor, Somerset, NJ 08873, USA
Email: yash () acm org      Web: http://research.lumeta.com/yash/
Phone: (732) 357-3511     Cell (973) 420-5919
    ** Want to audit or debug your firewall's policy? **
Lumeta Firewall Analyzer: http://www.lumeta.com/firewall.com

__________________________________________________
Do You Yahoo!?
Make international calls for as low as $.04/minute with Yahoo! Messenger
http://phonecard.yahoo.com/
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: