On 7/14/2011 2:13 AM, Jaroslaw Zdrzalek wrote:
> Yes, you can have multiple red zones, no problem.
> EFW supports multiple subnets on green in manner
> of shared ethernet. This will not work if you have
> two nic's and the switches for each lan.
> You better use the orange or blue zone for
> the second lan. You will need to customize the
> firewall rules.
So it sounds like each physical subnet needs its own Endian zone.
When you say "multiple subnets on green in manner of shared ethernet"
do you mean one physical subnet (one switch) but I can divide that
larger subnet into smaller pieces in Endian?
It seems there would be two ways to do that:
(1) Different, more restrictive netmasks on the same physical subnet
that makes up a single Endian zone -- e.g., take 10.1.64.0/22
and divide it into 10.1.64.0/24, 10.1.65.0/24, 10.1.66.0/24 and
10.1.67.0/24.
(2) Take a VLAN approach and divide the larger subnet into smaller
ones using some other criteria (e.g., MAC address). I see some
references to VLANs in the mailing list archives. If those are
like a switch-based VLANs then maybe this can be done?
--
Steve Sapovits
steve...@comcast.net
------------------------------------------------------------------------------
AppSumo Presents a FREE Video for the SourceForge Community by Eric
Ries, the creator of the Lean Startup Methodology on "Lean Startup
Secrets Revealed." This video shows you how to validate your ideas,
optimize your ideas and identify your business strategy.
http://p.sf.net/sfu/appsumosfdev2dev
_______________________________________________
Efw-user mailing list
Efw-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/efw-user
