Hey all, [I apologise for not browsing the archives too thouroughly, I probably missed relevant stuff.]
Our network topology has changed (again, thanks to "brilliant" service
of Belgacom Belgium). We now have a ADSL line coming into a Cisco router
(just straight into a Linux box was not allowed and not supported. Can
you believe that?). This then goes to our firewall:
------------
| (WAN IP) |
| CISCO |
| (LAN IP) |
------------
|
--------------
| (LAN IP 1) |
| FIREWALL |
| (LAN IP 2) |
--------------
|
Rest of the network
I have a few questions about this setup:
- Can I automatically assume that everything with the src address of the
Cisco comes from the Internet? I don't think there'll be reference to
the real internet address left, since the Cisco has to do NAT aswell?
- Lan IP, Lan IP 1, Lan IP 2 are all in the same subnet. Is that ok?
- Client machines in the network set their default gateway to 'Lan IP
2'. The gateways on the firewall are 'Lan IP 1' for the internal and
'Lan IP' for the external. Correct?
I hope I made myself clear enough, and didn't make too many mistakes. :)
Thanks in advance,
--
Alexander Deruwe
AQS-CarControl
msg00298/pgp00000.pgp
Description: PGP signature
