?
Solved

Public Firewall

Posted on 2011-03-05
1
Medium Priority
?
358 Views
Last Modified: 2012-05-11
We recently implemented Paralells, plesk.  You cannot NAT Plesk containers.  All containers are public IP's.  The class C public IPs sit on the colo's router and then this plugs into my switch using a cat5 cable the colo facility provides.  The servers are plugged into the switch too, all having public IP's.  I can certainly put a firewall in place and change the gateway on the NIC's on the servers and have the outbound traffic pass thourgh the firewall.  The QUESTION is about inbound traffic, how can you have the firewall filter inbound traffic, when it is all public IP broadcast traffic?
0
Comment
Question by:centuric
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 57

Accepted Solution

by:
giltjr earned 2000 total points
ID: 35044301
You would need to implement a firewall that works in bridge mode and not as filtering router.  In bridge mode they are "transparent" at layer 3 so there is no IP routing or NAT'ing avalaible, but you can still filter traffic.

I have not read it in detail, but I did find how to implment a bridging firewall in Linux using netables.

     http://www.spenneberg.com/talks/linux-kongress2002/ralf-spenneberg.bridgewall.pdf

I'm not sure what commercial firewalls will work in bridge mode.  I know PIX (now ASA) from Cisco does and I am sure some of the other big names (like Juniper and Checkpoint) do also.
0

Featured Post

Does Your Cloud Backup Use Blockchain Technology?

Blockchain technology has already revolutionized finance thanks to Bitcoin. Now it's disrupting other areas, including the realm of data protection. Learn how blockchain is now being used to authenticate backup files and keep them safe from hackers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
Make the most of your online learning experience.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question