warriorsTeah
asked on
Firewall Issue
Please refer to picture 1, that is the existing structure of network and picture 2 is the new firewall add in to this network. I facing the problem below now
1. Wireless Device cannot access to LAN resource, but can access to internet
2. My Firewall have built in function DDNS so that I configure the VPN in Firewall but I unable to connect to the site using the DNS given by checkpoint.
Question:
1. Anything wrong in my network structure and what are need to improve to have a better performance and security
2. How to allow my wireless device to access to my LAN
3. How to use my all in one devices as a modem only
Picture-1-001.jpg
Picture-2-001.jpg
1. Wireless Device cannot access to LAN resource, but can access to internet
2. My Firewall have built in function DDNS so that I configure the VPN in Firewall but I unable to connect to the site using the DNS given by checkpoint.
Question:
1. Anything wrong in my network structure and what are need to improve to have a better performance and security
2. How to allow my wireless device to access to my LAN
3. How to use my all in one devices as a modem only
Picture-1-001.jpg
Picture-2-001.jpg
You might be able to hook up as you've shown. But you should not need the router in front of the firewall router. Use the firewall as the internet connection device at your end.
The firewall *is* "behind another device NAT". That's for sure.
AT present, the gateway for the server should be 192.168.1.254; so that looks OK.
Wireless devices will need a wireless router or access point that is plugged into the LAN.
This can be as a "switch". I've attached a paper on that.
Wireless-Router-as-a-Simple-Swit.pdf
The firewall *is* "behind another device NAT". That's for sure.
AT present, the gateway for the server should be 192.168.1.254; so that looks OK.
Wireless devices will need a wireless router or access point that is plugged into the LAN.
This can be as a "switch". I've attached a paper on that.
Wireless-Router-as-a-Simple-Swit.pdf
ASKER
please read carefully my picture my firewall does not support adsl so that i still need to use the old devices(wireless modem router) to connect internet.
can you put the router in bridge mode so that the firewall gets the public IP?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Base from my picture 1, if i add in the new firewall, can i just plug the dlink LAN port to Firewall LAN port so that, I just use the WAN port configuration in dlink router.If do this way, my firewall still can function well ?
No it won't likely still function well unless it has quite comprehensive LAN to LAN connection stuff. That's not too likely. It may have *some* but not what you're likely looking for.
For example: stateful packet inspection is sometimes available for LAN to LAN communications. But then the firewall needs to be the gateway. I suppose it can be the gateway to the hosts on the network and re route to the Dlink. But I am rather skeptical regarding the functionality you'd get.
For example: stateful packet inspection is sometimes available for LAN to LAN communications. But then the firewall needs to be the gateway. I suppose it can be the gateway to the hosts on the network and re route to the Dlink. But I am rather skeptical regarding the functionality you'd get.
ASKER
I will purpose my customer buy another ADSL modem and use as bridge mode,i plan to bring the existing (wireless modem router) as normal wireless AP only, please recommend what are the model for ADSL modem confirm can switch to switch mode .
this can also be obtained if your router supports bridge mode, but not advised as it is an additional point of failure in the topology
2) the wireless router should be in your LAN or connected to the firewall, but not directly connected to the internet
3) what do you mean? all in one devices to act as a modem?