[ale] Firewall Preference
Christopher Fowler
cfowler at outpostsentinel.com
Wed Dec 14 07:38:37 EST 2005
That is my thought too. Right now I have 3 machines on the public IPs
and each machine has a set of rules. I would prefer to simplify this
approach and use a firewall to consolidate those rules. I'll also add a
private segment for other equipment.
I have a D-Link 4 port ethernet that I'll use for this purpose. Should
work like a champ.
On Tue, 2005-12-13 at 18:48 -0500, Dow_Hurst wrote:
> I'd prefer the bridge since it will provide simpler configuration with public IPS rather than dealing with forwarded ports.
> Just my preference....
> Dow
>
>
> -----Original Message-----
> From: Christopher Fowler <cfowler at outpostsentinel.com>
> Sent: Dec 13, 2005 2:26 PM
> To: ale at ale.org
> Subject: [ale] Firewall Preference
>
> I now have space at a colo with 8 public IPs. I need to install a
> firewall but have a question on the best method.
>
> 1. Should I install a firewall that bridges 2 network cards and
> sits between my equipment and a Cisco 2900XL? This method I
> can consolidate all my rules on the firewall and then all
> my servers can have public IPs.
>
> 2. Should I install a firewall that has 2 network cards and on the
> 2nd interface install my equipment on a 192.168.1.X subnet. I
> then give the first interface all 8 public IPs but using IP aliasing
> and then use one to one NAT to allow customers to access my
> equipment as if it was on a public segment.
>
> Thanks,
> Chris
>
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://www.ale.org/mailman/listinfo/ale
>
>
> No sig.
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://www.ale.org/mailman/listinfo/ale
More information about the Ale
mailing list