Currently we are doing some tests with FreeSWan/Shorewall.
To increase security we''d intend to use both an external and internal
firewall. The external firewall will also do NAT.
Could someone please give me a hint what should be the preferred
firewall to install our FreeSwan-server ?
And just another question, could NAT become a problem in this setup. I
understand that NAT and IPSEC are often a problematic.
--
Ad Koster \ E-mail:lidad@zeelandnet.nl
\ ICQ: 257662686
\ RedHat 9.0 kernel 2.4.20
-------------- next part --------------
A non-text attachment was scrubbed...
Name: lan_0.sxw
Type: application/vnd.sun.xml.writer
Size: 6392 bytes
Desc: not available
Url :
http://lists.shorewall.net/pipermail/shorewall-users/attachments/20030917/6f612d98/lan_0.bin
On Wed, 2003-09-17 at 10:28, Ad Koster wrote:> Currently we are doing some tests with FreeSWan/Shorewall. > > To increase security we''d intend to use both an external and internal > firewall. The external firewall will also do NAT. > > Could someone please give me a hint what should be the preferred > firewall to install our FreeSwan-server ? > > And just another question, could NAT become a problem in this setup. I > understand that NAT and IPSEC are often a problematic.If you put the FreeSwan server on the outer firewall, you avoid potential NAT problems. -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net