Question on network setup (simple question)

Simple question:

Say you have a network like this:


WAN
  |
Router
  |
Firewall
  |
DMZ (www server, mail server etc)
  |
Firewall
  |
Internal Clients

What would the default gateway be for the internal clients? One of the interfaces on the firewall? Or do companies throw a router on the internal side ?

Thanks..
dissolvedAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Joel_SiskoCommented:
The default gateway for the internal clients would be whatever device woul dbe the next hop to the Internet, as per the above diagram, The closest Firewall to the LAN. Now can the Firewall actually act as a router is dependant upon the Firewall type used. In any case, the Firewall is going to filter packets based on rules and forward them to the next hop, this can be either thru a built-in router or static routes from one interface to another (inside to outside; or in the above diagram the DMZ).
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
EladlaCommented:
What machine is giving out ips?
Is it one of the servers or one of the devices?
0
chicagoanCommented:
The inside firewall in your drawing should be the default gateway.
The default gateway is any device that knows where to send traffic not destined for the local network. In your drawing it is the only device on the local network, and therefore the only one the internal clients would know how communicate with.
0
KuppingerCole Reviews AlgoSec in Executive Report

Leading analyst firm, KuppingerCole reviews AlgoSec's Security Policy Management Solution, and the security challenges faced by companies today in their Executive View report.

dissolvedAuthor Commented:
thanks guys. Is this a typical setup for companies? To have the firewall as the gateway for their internal clients. Just wondering if companies do this, or buy a second router for internal clients. I guess you could use a layer 3 switch too...
0
lrmooreCommented:
>What would the default gateway be for the internal clients? One of the interfaces on the firewall? Or do companies throw a router on the internal side ?
The default would have to be the firewall, but if there are any VLANs or other subnets, or private WAN connections, then there is typically another router on the inside. The problem with using the firewall as the gateway lies in its inability to redirect packets to a different inside host. Routers do this by default, most firewalls do not (certainly not PIX), so it can sometimes be problematic without another inside router or L3 switch.
0
dissolvedAuthor Commented:
thanks lrmoore. All I needed to know
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Security

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.