I presume you are using one interface on the Internet and the others connected
to your INTERNAL NETWORKS.
Is it possible to 'firewall' multiple interfaces (connected to
different ISP's) to multiple interfaces on different Internal networks with a
one to one relationship, with each a seperate set of rules, on a FW-1 or any
other FW? Which hardware configuration would be suitable (multi-processor)? Any
experiences on performance and security issues?
ISP-1 ISP-2 ISP-3 .... ISP-n
| | |
| | |
| | |
-------- -------- --------
DMZ-1 | DMZ-2 | DMZ-3 |
--------------------------
| FW |
--------------------------
| | |
| | |
| | |
INTERNAL INTERNAL INTERNAL ..... INTERNAL
NETWORK-1 NETWORK-2 NETWORK-3 NETWORK-n
> We currently use Sun Ultra's for all of our firewalls. I know we have at
> least one of them running with two FDDI boards and a quad ethernet board
> (we had to remove the graphics cards to accomplish this). I would assume
> you could use any combination.
>
> Chuck Statton
> GTE
> -----Original Message-----
> From: Dean Ethier <Dean_Ethier_at_dmr.ca>
> To: fw-1-mailinglist_at_us.checkpoint.com <fw-1-mailinglist_at_us.checkpoint.com>
> Date: Wednesday, January 07, 1998 6:41 PM
> Subject: [FW1] Multiport NICs on FW1
>
>
> >
> >
> >I know this question has been asked here already, but here goes again. I
> >need to talk to people who have had success in setting this up.
> >Specifically, I'm interested in finding out how many interfaces you've
> >been able to set up on a single box. I would like to set this up on
> >something like a Compaq PrLiant 800 running NT, but I'm not totally opposed
> >to going Unix if I have to.
> >
> >TIA
> >Dean Ethier
> >DMR Consulting Group Ltd
> >dean.ethier_at_dmr.com
Received on Jan 09 1998
Intro
