|
Title: EFW as a single interface proxy Post by: tman on Friday 12 March 2010, 03:52:30 am Just joined the community, and have a quick question.
We're looking to implement some proxy servers internally, probably using a single interface. I need them to be able to proxy & cache (squid), A/V scan web traffic, and if possible, use LDAP auth against A/D. Will/can EFW do this? I've tried searching for ways of using it in single interface mode, but during the initial config, it seems to need the RED as well as GREEN interfaces in it's basic config. Can EFW act as a basic one interface proxy? Title: Re: EFW as a single interface proxy Post by: tman on Friday 12 March 2010, 08:32:08 pm Ok, would this work.
Configure EFW with two interfaces (GREEN and RED). Add a valid internal IP to the GREEN side, but an arbitary IP to the RED side. If you set the gateway IP to an address on the GREEN side, would EFW just act as a single interface proxy? This would assume packets received on the GREEN side would come in and go straight back out on the same interface if destined for the local gateway, as it's on the same network as the GREEN interface. Haven't tried it yet, but does it sound plausable? I'd probably disable the firewall feature anyway in this config. |