I need to deploy a web server. For security reason I need to protect my server from the outside world. I dedicated a computer with two Ethernet interfaces for firewalling.
The external interface (eth1) is connected to a frame relay router and my IP is fixed(example) 188.8.131.52
The internal interface (eth0) is connected to my local network address range 192.168.0.0/28 while my web server is 192.168.0.14.
Two goal I need to achieve:-
1. Allow all my local network users to freely access the internet
2. Allow all external users to visit my web site while protecting against malicious intruders.
firewall rules should be very tough, no external access to any computer configuration to no body.