[fw-wiz] Non-NAT Firewall
From: Nathaniel Hall (nathaniel.d.hall_at_gmail.com)
Date: 11/07/05
- Previous message: Oddbjørn Steffensen: "Re: [fw-wiz] scanning..."
- Next in thread: Devdas Bhagat: "Re: [fw-wiz] Non-NAT Firewall"
- Reply: Devdas Bhagat: "Re: [fw-wiz] Non-NAT Firewall"
- Reply: Paul Melson: "RE: [fw-wiz] Non-NAT Firewall"
- Reply: Sigurd Urdahl: "Re: [fw-wiz] Non-NAT Firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: firewall-wizards@honor.icsalabs.com Date: Sun, 06 Nov 2005 18:28:03 -0600
Alright, this is a bit tough to explain, so I will try my best.
I am currently running a CheckPoint-NG firewall with three interfaces.
Interface 1 goes to DMZ 1 (public IP addressing and Internet facing),
interface 2 goes to DMZ 2 (public IP addressing) and interface 3 goes to
the internal network (private IP addressing). The CheckPoint FW does
not peform NAT. That allows me to review logs of servers in DMZ 1
without having to figure out what internal IP as NATed.
Now, for my problem. I would like to be able to have the same
functionality using NetFilter, but I have not been able to figure out
how to do this without masquerading or using DNAT and SNAT. Any ideas?
-- Nathaniel Hall, GSEC GCIA _______________________________________________ firewall-wizards mailing list firewall-wizards@honor.icsalabs.com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Oddbjørn Steffensen: "Re: [fw-wiz] scanning..."
- Next in thread: Devdas Bhagat: "Re: [fw-wiz] Non-NAT Firewall"
- Reply: Devdas Bhagat: "Re: [fw-wiz] Non-NAT Firewall"
- Reply: Paul Melson: "RE: [fw-wiz] Non-NAT Firewall"
- Reply: Sigurd Urdahl: "Re: [fw-wiz] Non-NAT Firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
