[ale] Firewalls

Derek Atkins derek at ihtfp.com
Fri Apr 2 12:43:39 EDT 2021 

This is certainly doable on an Edgerouter:
https://help.ui.com/hc/en-us/articles/115009504308-EdgeRouter-How-to-Distribute-Public-IP-Addresses

-derek

On Fri, April 2, 2021 12:34 pm, Chuck Payne wrote:
> I tried to get it working it, but it was so hard and it didn't work.
>
> SonicWall I put the put ip, and then the private ip need to talk, 5 min of
> work.
>
> On Fri, Apr 2, 2021 at 12:20 PM Derek Atkins <derek at ihtfp.com> wrote:
>
>> Oh, by VIP you mean reverse-NAT?  Or "port forwarding"?
>> I am pretty sure both will do that.
>> I'm actually suprised the pfSense wont do that.
>>
>> -derek
>>
>> On Fri, April 2, 2021 12:17 pm, Chuck Payne wrote:
>> > So I have 5 ip from Comcast. On my Sonic Wall, I have three ip setup.
>> One
>> > is for the hardware, the other two are vips, Virtual IP. I might not
>> be
>> > using the correct terminology. But anything out there comes to the
>> vips
>> on
>> > my Sonicwall it can NAT/Route to the host's needs. I hope that makes
>> > sense.
>> >
>> > I will take a look at those two, to be honest, I haven't heard of
>> them.
>> >
>> > On Fri, Apr 2, 2021 at 12:08 PM Derek Atkins <derek at ihtfp.com> wrote:
>> >
>> >> Hi Chuck,
>> >>
>> >> What exactly do you mean by "set up vip with the IPs"?
>> >>
>> >> Have you considered a Mikrotik or Unifi product?  I've got OpenVPN
>> and
>> >> L2TP set up with my Unifi Edgerouter.
>> >>
>> >> -derek
>> >>
>> >>
>> >> On Fri, April 2, 2021 12:04 pm, Chuck Payne via Ale wrote:
>> >> > So, I have a quick question. I have two firewalls in my house. A
>> >> Sonicwall
>> >> > NAS3500 that is end of life and pfSense.
>> >> >
>> >> > I use the SonicWall because my old work gave it to me, I love it
>> >> because
>> >> > it
>> >> > simple and I can set up vip with the IPs I have. pfSense is a pain
>> to
>> >> do
>> >> > vip, but it rocks because I have openvpn setup and I can get into
>> my
>> >> > network from anywhere be it my phone or laptop. I use it as my
>> primary
>> >> > dhcp
>> >> > server and something NAT'ing.
>> >> >
>> >> > I am looking a new firewall. I like to find a Sonicwall, not sure
>> if
>> >> there
>> >> > a place that sells them at a huge discount for students. I like
>> >> something
>> >> > that is new. Or something like that, be Juniper or Fortinet. Are
>> there
>> >> > such
>> >> > sites or places?
>> >> >
>> >> > I was told that Sophos has a free firewall that is good. You can
>> >> install
>> >> > it
>> >> > on hardware or a virtual. So I am wondering if anyone used it and
>> can
>> >> give
>> >> > feedback?  Can you do VIP and NAT'ing easily or is this more of a
>> home
>> >> > firewall? By that, meaning very limited what you can do.
>> >> >
>> >> > Thanks for any feedback/help you can give. Trying to upgrade my
>> home
>> >> > network.
>> >> >
>> >> > Not related, but nice to have when you are working on your home
>> >> > network. Sweetwater Blue is a very nice wheat ale. I tend to
>> support
>> >> local
>> >> > beers. I can recommend "The Gate" in Roswell, their Copper Head a
>> >> great
>> >> > amber beer. Blind pirate from Monday Night Brewing another local
>> >> brewery
>> >> (
>> >> > Oh, Allen, they have one in Birmingham as well )
>> >> > --
>> >> > Terror PUP a.k.a
>> >> > Chuck "PUP" Payne
>> >> > -----------------------------------------
>> >> > Discover it! Enjoy it! Share it! openSUSE Linux.
>> >> > -----------------------------------------
>> >> > openSUSE -- Terrorpup
>> >> > openSUSE Ambassador/openSUSE Member
>> >> > skype,twiiter,identica,friendfeed -- terrorpup
>> >> > freenode(irc) --terrorpup/lupinstein
>> >> > Register Linux Userid: 155363
>> >> >
>> >> > openSUSE Community Member since 2008.
>> >> > _______________________________________________
>> >> > Ale mailing list
>> >> > Ale at ale.org
>> >> > https://mail.ale.org/mailman/listinfo/ale
>> >> > See JOBS, ANNOUNCE and SCHOOLS lists at
>> >> > http://mail.ale.org/mailman/listinfo
>> >> >
>> >>
>> >>
>> >> --
>> >>        Derek Atkins                 617-623-3745
>> >>        derek at ihtfp.com             www.ihtfp.com
>> >>        Computer and Internet Security Consultant
>> >>
>> >>
>> >
>> > --
>> > Terror PUP a.k.a
>> > Chuck "PUP" Payne
>> > -----------------------------------------
>> > Discover it! Enjoy it! Share it! openSUSE Linux.
>> > -----------------------------------------
>> > openSUSE -- Terrorpup
>> > openSUSE Ambassador/openSUSE Member
>> > skype,twiiter,identica,friendfeed -- terrorpup
>> > freenode(irc) --terrorpup/lupinstein
>> > Register Linux Userid: 155363
>> >
>> > openSUSE Community Member since 2008.
>> >
>>
>>
>> --
>>        Derek Atkins                 617-623-3745
>>        derek at ihtfp.com             www.ihtfp.com
>>        Computer and Internet Security Consultant
>>
>>
>
> --
> Terror PUP a.k.a
> Chuck "PUP" Payne
> -----------------------------------------
> Discover it! Enjoy it! Share it! openSUSE Linux.
> -----------------------------------------
> openSUSE -- Terrorpup
> openSUSE Ambassador/openSUSE Member
> skype,twiiter,identica,friendfeed -- terrorpup
> freenode(irc) --terrorpup/lupinstein
> Register Linux Userid: 155363
>
> openSUSE Community Member since 2008.
>


-- 
       Derek Atkins                 617-623-3745
       derek at ihtfp.com             www.ihtfp.com
       Computer and Internet Security Consultant

More information about the Ale mailing list