On 21:42 Thu 06 Oct , Mark wrote:
I'd like to build a gentoo box to act as a single router between a
hardware firewall (appliance) and two internal separate network segments.
The goal is to allow both internal segments to access the Internet via the
same firewall, but not allow
Sound OK so far?
Yup, same setup I'm using (kinda). Works out very well.
Next steps I think are figuring out how to provide DHCP
to both internal subnets from the same Gentoo box, and
what gateway address(es) the clients should use.
The gentoo box is the gateway. Assuming it is
I'd like to build a gentoo box to act as a single router between a
hardware firewall (appliance) and two internal separate network
segments. The goal is to allow both internal segments to access the
Internet via the same firewall, but not allow them to see eachother.
Here's my general idea -
Unless its limiting you in some fashion, leave it there as an extra
layer of protection - dedicated HW firewalls are often more secure than
a general purpose machine, but lose out in the flexibility/functionality
stakes. You can also get funky and use the gentoo box to detect suspect
traffic, and
4 matches
Mail list logo
