אריה קלטר <[email protected]> wrote: > Both internal networks are on the same subnet and the servers on each subnet > are on the same internal IP, by the server role. > The question is that > Both firewalls attacked, so i need to create them from start > Can i unify them to one FW that will do NAT seperatly, with seperate external > IP address?
Not really. The problem is that you have duplicate IP ranges, and this breaks rule one of IP addressing that "all IP addresses are unique" - or with networks broken by NAT, "all IP addresses are unique, at least within the scope that is visible from any one of your hosts". There are probably ways of fudging round some of the issues, but realistically do yourself a favour and just don't go there ! Either create two firewalls again, or renumber one of the networks. ------------------------------------------------------------------------------ Mobile security can be enabling, not merely restricting. Employees who bring their own devices (BYOD) to work are irked by the imposition of MDM restrictions. Mobile Device Manager Plus allows you to control only the apps on BYO-devices by containerizing them, leaving personal data untouched! https://ad.doubleclick.net/ddm/clk/304595813;131938128;j _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
