On Mon, Jun 14, 1999 at 09:15:13AM +0100, [EMAIL PROTECTED] wrote:
> We have at present 2 x 512k connections to our ISP and are looking to
purchase
> Firewall-1. Unfortunately one of the 512K lines was installed for a client
> server running on our site. As we understand it, 2 connections means 2
> firewalls, therefore a single 2mb line with bandwidth management would
seem the
> solution. However, our ISP say that Firewall-1 and Floodgate can't run off
> the same box! Is this true? The firewall would run off a Sun Ultra 5
> workstation. Has anyone had similar experiences? Any suggested solutions?
First of all:
You can run a Firewall-1 setup with f.ex. 4 nic's:
- nic1 -> 1st 512k connection
- nic2 -> 2nd 512k connection
- nic3 -> DMZ
- nic4 -> Your LAN
And use NAT for the DMZ and the LAN.
The problem arises when you want to use both 512k connections for your LAN.
The simplest solution is: everything on the DMZ goes to nic1, and everything
on the LAN goes to nic2. Other solutions are also available of course.
You could even throw out the DMZ, and just use the LAN (but I wouldn't
recommend it). Your problem would be load-sharing and how to do it. :)
btw: if you go for 3 or more nic's, consider using a quad-card!
Second:
I am running Firewall-1 4.0 SP3 with Floodgate 1.5 on a Windows NT 4.0 SP5
box right now, and it seems to work just fine!
--
Stig Johansen
ARK Outsourcing
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
