Firewall Wizards mailing list archives

RE: Maximum number of subnets on a firewall

From: "Bill Royds" <broyds () rogers com>
Date: Sat, 31 Jan 2004 15:28:37 -0500

This looks like a place for three firewalls, one for each company.
I would have the Internet connection coming to a router/switch that was in
front of each firewall.  Each firewall would then have a DMZ subnet (for its
Internet available host), a local segment (for the internal company network)
and perhaps an Intranet segment (if the company wanted to share data with
one of the other companies in a relatively secure manner). Each firewall
would then have no more than 4 segments (external DMZ, internal and
Intranet) and the design would isolate each company from the other by a
firewall.

The firewalls could be relatively cheap appliance boxes (Netscreen for
example) and would be replacing routers/switches anyway so should not add
much to the cost.


-----Original Message-----
From: firewall-wizards-admin () honor icsalabs com
[mailto:firewall-wizards-admin () honor icsalabs com] On Behalf Of Paolo Supino
Sent: January 28, 2004 2:32 PM
To: 'firewall-wizards () honor icsalabs com'
Subject: [fw-wiz] Maximum number of subnets on a firewall


Hi 

  The following story and question aren't product specific so please don't
try to attach it to any available product: I was asked to plan a network for
a group of 3 companies (all located in the same building and want to use the
same infrastracture). From gathering the requirements of each of the
companies I've concluded that all of them together will need 10 subnets
(including the subnet that is connected to the internet). Since the biggest
number of subnets per firewall that I ever installed was 6. Setting up 10
subnets on 1 firewall (to me) seems too much for me so I'm looking for a way
to have the 10 networks on 2 (or 3) different firewalls. If you have any
suggestions on a possible layout I'd be very happy to read it.





        Paolo 
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Maximum number of subnets on a firewall Paolo Supino (Jan 31)
- Re: Maximum number of subnets on a firewall Paul Robertson (Jan 31)
- Re: Maximum number of subnets on a firewall Devdas Bhagat (Jan 31)
- Re: Maximum number of subnets on a firewall Chuck Swiger (Jan 31)
- RE: Maximum number of subnets on a firewall Bill Royds (Jan 31)