Welcome, Guest. Please login or register.
Did you miss your activation email?
Sunday 24 November 2024, 11:49:06 am

Login with username, password and session length

CLICK HERE for the The official Endian Roadmap and Issue tracker
14261 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  Border firewall setup
0 Members and 2 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Border firewall setup  (Read 10739 times)
npeterson
Full Member
***
Offline Offline

Posts: 90


« on: Thursday 09 October 2008, 10:22:15 am »

I'm new, as in 2 days, to efw so bear with me. I would like to know if efw can work for my setup. Here is What i would like to do, setup a  fw chain like so :

Internet - {FW1} - DMZ - {FW2} - Internal

FW1 - We would need to route our external interface 10.1.2.2 to the orange interface (10.1.3.1) that is our DMZ witch has publicly accessible ip's, and vise versa. Green interface should not route anything, its just the management interface.

FW2 - is connected to the DMZ orange interface (10.1.3.2) to the green interface 10.1.4.0/24. This connection is NAT'd

I'm having problems with FW1, can efw be setup to do this? can there be a zone firewall between the red and orange interfaces and still route traffic from orange to red and vise versa? So far i cannot create this, when i go to create the zone fw, it doesnt list red as a interface i can use for the source or destination. I've put the routes in place, but dont have the time to test this tonight.
Logged
Shane_08
Jr. Member
*
Offline Offline

Posts: 5


« Reply #1 on: Friday 17 October 2008, 03:51:41 am »

I would say the easiest way to configure this would be to have FW1 forwarding any required traffic to the DMZ (orange interface). Any traffic that is meant for the internal network (via firewall 2) should be sent to the red ip of firewall 2. Firewall 2 then needs to be configured to forward required traffic from the red network to the green network.

Not sure if you are using Endian FW for both, but if you are I would recommend using the one firewall to keep updates nice and easy Smiley
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.063 seconds with 18 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com