Hi Guys,
I am setting a Firewall server up now and would like to know if this setup
will
actually work. (I think I have thought it through...) (please tell me if
I''m
wrong....) (Thank You in advance)
Firewall :
4 NIC''s
(net zone) Nic 1 - eth0 ----> 512/512 ADSL
(net1 zone) Nic 2 - eth1 -----> 1.5Mb/256 ADSL
(loc - zone) Nic 3 - eth2 ------> to the LAN - Downstream from the
1.5Mb
(DMZ zone) Nic 4 -eth3 ------> to the DMZ - one FTP and WWW Server solely
from the ''net'' zone. (512/512)
(DMZ zone) Nic 4 - eth3 ------> to the DMZ - 2nd FTP Server
one FTP Server upstream available only to the 256 ASL.
one FTP Server upstream available only to the 512 DSL
the net1-local segment will Masquerade (192.168.42.) range
the net-dmz segment will DNAT to the DMZ FTP Server (172.16.0.2)
the net1-dmz segment will DNAT to the DMZ FTP2 Server (172.16.0.3)
Any suggestions ? Are there any tricky routing things I need to add ?
and Tom, thanks for the great shorewall product, makes iptables so much
easier.
Richard Hatherly
Ritech Computing Services
0411 459 507