Solved

network design and interface matters

Posted on 2003-10-30
4
295 Views
Last Modified: 2010-03-19
Diagram A.

subnet A ---------|
                         |                                             web server
                         |                                                      \  
                         |                                                        \
subnet B  -------router 1------ Firewall 1-------------------- Boundary router (subnet E)
                         |                                                        /                                                                               |
                         |                                                      /               |
                         |                                            mail server          |
subnet C ---------|                                                                      |
                                                                                           Firewall 2
                                                                                                |
                                                                                                |
                                                                                                |
                                                                                              router 2
                                                                                                |                                                                                                
                                                                                                |
                                                                                                |
                                                                                             subnet D

I intend to connect 3 subnets to router 1, den from router 1, connect to firewall 1.
wat would be the interface for firewall 1? i believe 1 IP will be from subnet E, how abt the other one?
0
Comment
Question by:kebeen
  • 3
4 Comments
 
LVL 35

Accepted Solution

by:
ShineOn earned 125 total points
ID: 9655697
Are the subnets A B and C all part of network D?  For example: A=10.1.1.0  B=10.1.2.0  C=10.1.3.0   A,B & C use netmask 255.255.0.0.  Interface X on router is 10.1.254.254 with netmask 255.0.0.0.  That makes the 3 subnets AB&C all part of the same higher-level network which is what that end of router1 is defined to.


Is that the scenario?

If yes, then one end of firewall 1 would be on subnet E and the other end would be on subnet whatever the heck you want to make it.  All you need to do is route what's going in and out of subnets A,B&C through the firewall 1 private interface using a route provided by router 1.  If the ABC subnets each would have a separate interface, it wouldn't matter what network or address you use for the interface between router 1 and Firewall 1 as long as you set up the routes and any NATs appropriately.

Regardless, in this diagram, one interface of Firewall 1 is going to be in the subnet E in order to connect to the boundary router.

What firewall services did you plan to provide through Firewall 1?  Proxy?  NAT?  Packet filtering?  ???
0
 
LVL 35

Expert Comment

by:ShineOn
ID: 9655701
Sorry, it should read "Are the subnets on A B and C all part of network X, with X being the "private" side of router 1?"
0
 
LVL 1

Author Comment

by:kebeen
ID: 9655800
I have a class C network.
all these subnets R all all classless. perhaps.


x.y.z are all the same........ say 140.151.23.subnet/host.

subnet A  x.y.z.a/26
subnet B  x.y.z.b/26
subnet C x.y.z.c/27
subnet D x.y.z.d/27
subnet E x.y.z.E/28

>If yes, then one end of firewall 1 would be on subnet E and the other end would be on >subnet whatever the heck you want to make it.

I have 3 subnets on the other side...... so..... must i create a new subnet just for the router n firewall?
b'coz the router interface with 3 subnets on one side.... n ?? on the other.....
while the firewall interface with subnet E on one side n ???? on the other.....
0
 
LVL 35

Expert Comment

by:ShineOn
ID: 9656211
Yes, if I understand correctly...
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

948 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now