VLANs on a Debian firewall

To: debian-firewall@lists.debian.org
Subject: VLANs on a Debian firewall
From: Sean McAvoy <sean.mcavoy@megawheels.com>
Date: Wed, 21 Jul 2004 16:00:17 -0400
Message-id: <[🔎] 966B2B1C-DB50-11D8-8DA7-000A95E8BC20@megawheels.com>

Hello,

I am researching some solutions for a Debian based firewall and lookingfor comments, thoughts, etc.I will be setting up a redundant VPN firewall (i.e. two system runningdebian 3.0, with latest kernel/openswanand possibly grsecurity, with HA managing the monitoring/failover). Thetwo systems will have several external IP addresses assigned to them,for the various services the systems they are protecting.I need initially, to keep 4 networks behind the firewall separated. Ihave a Layer 2 switch all the (internal) systems will be connected thatsupports VLANS. I was looking at setting up VLANs for each network onthe switch and configuring vlans on the firewalls internal interface.I've not done this on Linux before and am wondering how complex thiswould be to accomplish with the fact that there would be the twofirewalls. I think it would be simpler to purchase additional nics forthe firewalls (one per network), but this would limit how manyseparated networks could be protected by the firewalls. below is myattempt at a ascii diagram of what I need to accomplish.

Thanks in advance.


	 Inet
	   |
	|----|
	fw0 fw1
	 |   |
LAN0-Switch0-LAN3
     |    |
    LAN1  LAN2

Sean McAvoy
Network Analyst
Megawheels Technologies Inc.

Phone:	416.360-8211 x242
Fax:		416.360.1403
Cell:	416.616.6599

Reply to:

Prev by Date: Accounting on a firewall
Next by Date: Re: Accounting on a firewall
Previous by thread: Re: Accounting on a firewall
Next by thread: VLANs on a Debian firewall
Index(es):
- Date
- Thread