Re: firewalls for dummies?

To: debian-firewall@lists.debian.org
Subject: Re: firewalls for dummies?
From: Gus <gus@getsystems.com>
Date: Fri, 2 Jul 1999 12:17:41 +1000
Message-id: <[🔎] 19990702121740.A10502@getsystems.com>
In-reply-to: <[🔎] 19990701083452.A8852@sioux.llnl.gov>; from Stuart Marshall on Thu, Jul 01, 1999 at 08:34:53AM -0700
References: <[🔎] 19990701083452.A8852@sioux.llnl.gov>

On Thu, Jul 01, 1999 at 08:34:53AM -0700, Stuart Marshall wrote:
> The current network looks like:
>                                                       X.Y.(116 or 12).xxx
>  upstream router ------------------ switched_hub ---- local_machine_a
>  X.Y.116.254                               ||    \___ local_machine_b
>  X.Y.12.254 (alias)                 switched_hub ---- ....
>                                            ||
>                                           ....
> 
> 
> I would like it to look like:
> 
> 
>  upstream router ------ firewall -- switched_hub ---- local_machine_a
>  X.Y.116.254                               ||    \___ local_machine_b
>  X.Y.12.254 (alias)                 switched_hub ---- ....
>                                            ||
>                                           ....

the easiest and most straight-forward way, is to get the upstream
router to route everything for your networks through your firewall's
IP  (ie. they do:  route add -net x.y.116.0 gw your.firewall.ip)

no fancy firewall rules or ARP trickery

(the proxy arp method won't need help from upstream, but won't scale
well if you have lots of machines)

-- 
 - Gus

Reply to:

References:
- firewalls for dummies?
  - From: Stuart Marshall <marshall@sioux.llnl.gov>

Prev by Date: Re: firewalls for dummies?
Next by Date: Re: Port forwarding - problem resolved
Previous by thread: Re: firewalls for dummies?
Next by thread: Firewall and Routing question
Index(es):
- Date
- Thread