Re: Using two internet connections with one firewall

From: Bob Moriarty (Bob_at_NJ-Networks.com)
Date: 06/10/03 

Date: Mon, 9 Jun 2003 21:51:07 -0400

"Darren Bray" <darrenb@fwbaker.co.uk> wrote in message
news:6e50cc6e.0306090736.69530011@posting.google.com...
> Hi all hope you can help with this:
>
> I currently have FW1 with 3 nics (Internet,DMZ,LAN)
>
> We have recently added a second internet connection (satelite) to the
> network to get rid of some bandwith problems we were experiencing.
> (Upgrading the Kilostream was too expensive)
>
> The issue with this is that the LAN is not protected by the firewall
> any more and obviously poses a BIG security threat.
>
> In a separate project I was looking at replacing the FW1 with a
> sonicwall box, but understand that the sonicwalls only have 3 NIC's
> and so I won't be able to add the satellite link to the Firewall. If I
> stick with the FW1 setup, then I would have to look at solutions for
> covering the satelite I would imagine using a fourth NIC.
>
> Another option is to keep the FW1 box for kilostream, and add a
> sonicwall for the DMZ
>
> Can anyone give me an insight as to the best way of handling this
> issue?
>
> Thanks
>
> Darren

You need a separate firewall for each internet connection. Connect the LAN
sides of the firewalls to a hub/switch and then into another router. Conncet
the rest of the LAN downstream from this router. If you are dhcp booting,
you should do it from the inside router. You'll have to manually add routes
to the router to specify both paths unless the devices support RIP.

Good luck,
Bob 

-- 
NJ Networks
Specializing in Wired and Wireless Networks
http://www.nj-networks.com

Relevant Pages

  • Re: Using two internet connections with one firewall
    ... :> and so I won't be able to add the satellite link to the Firewall. ... You need a separate firewall for each internet connection. ... sides of the firewalls to a hub/switch and then into another router. ... connections or a router with an interface to the firewall, ...
    (comp.security.firewalls)
  • Re: Ask EU - firewalls
    ... As far as the internet connection is concerned, once it has passed out of the cable modem that many broad bean services employ, it is being fed to the network card of a single puter. ... The router is able to service the needs of at the same time. ... The firewall on the router is hardware based so is more secure than a software firewall on the pc which could potentially be disabled by a virus. ...
    (uk.media.radio.archers)
  • Re: Web Browsing via PC connection
    ... points at the box providing your internet connection. ... My choice would be to change your setup to use a router. ... You can still run a firewall on your PC, ...
    (comp.sys.acorn.networking)
  • Re: Internet connection and firewall question.
    ... How can I monitor and turn my Internet connection on and off ... How do you connect to the net, dial-up, direct or through a router? ... How can I best test my firewall and port protection? ...
    (alt.os.linux.suse)
  • Re: Just venting (totally OT)
    ... the ame router to get access to the net! ... I'm paranoid about opening up my firewall "just in case..." ... not visiting dodgy Websites. ... The protection that it does supply is also provided by ...
    (uk.people.support.depression)