[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 172
  • Last Modified:

Question on network setup (simple question)

Simple question:

Say you have a network like this:


WAN
  |
Router
  |
Firewall
  |
DMZ (www server, mail server etc)
  |
Firewall
  |
Internal Clients

What would the default gateway be for the internal clients? One of the interfaces on the firewall? Or do companies throw a router on the internal side ?

Thanks..
0
dissolved
Asked:
dissolved
3 Solutions
 
Joel_SiskoCommented:
The default gateway for the internal clients would be whatever device woul dbe the next hop to the Internet, as per the above diagram, The closest Firewall to the LAN. Now can the Firewall actually act as a router is dependant upon the Firewall type used. In any case, the Firewall is going to filter packets based on rules and forward them to the next hop, this can be either thru a built-in router or static routes from one interface to another (inside to outside; or in the above diagram the DMZ).
0
 
EladlaCommented:
What machine is giving out ips?
Is it one of the servers or one of the devices?
0
 
chicagoanCommented:
The inside firewall in your drawing should be the default gateway.
The default gateway is any device that knows where to send traffic not destined for the local network. In your drawing it is the only device on the local network, and therefore the only one the internal clients would know how communicate with.
0
Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

 
dissolvedAuthor Commented:
thanks guys. Is this a typical setup for companies? To have the firewall as the gateway for their internal clients. Just wondering if companies do this, or buy a second router for internal clients. I guess you could use a layer 3 switch too...
0
 
lrmooreCommented:
>What would the default gateway be for the internal clients? One of the interfaces on the firewall? Or do companies throw a router on the internal side ?
The default would have to be the firewall, but if there are any VLANs or other subnets, or private WAN connections, then there is typically another router on the inside. The problem with using the firewall as the gateway lies in its inability to redirect packets to a different inside host. Routers do this by default, most firewalls do not (certainly not PIX), so it can sometimes be problematic without another inside router or L3 switch.
0
 
dissolvedAuthor Commented:
thanks lrmoore. All I needed to know
0

Featured Post

New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now