Two SPI firewalls layered
From: Pietu (pietu1_at_removethis.juno.com)
Date: 03/15/04
- Next message: Duane Arnold: "Re: Firewall with low overhead?"
- Previous message: Russell: "Re: Firewall with low overhead?"
- Next in thread: Drew Cutter: "Re: Two SPI firewalls layered"
- Reply: Drew Cutter: "Re: Two SPI firewalls layered"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 14 Mar 2004 23:55:04 GMT
I have a seven computer network with two layers of firewall routers in a
following configuration:
(LAN Computers 1, 2, 3, and 4)
(D-Link 604 Router with SPI firewall)
(LAN Computers 5, 6, and 7 )
(U.S.Robotics 802.11g Wireless Router - Also with SPI firewall)
(WAN)
My goal is to have a hard wired block and a wireless block of the network so
that the computers with the most sensitive files (Computers 1-4) are hard
cabled and separated from the wireless part of the network behind another
layer of firewall. If a war-driver manages to break into my wireless
network, there would still be still another barrier to prevent him from
getting to the hard cabled computers behind another firewall.
Everything works perfectly with just one but a critical problem: I have not
been able to find router/firewall settings that would allow the innermost
LAN (computers 1-4) to access the outer LAN layer (computers 5 - 7) but not
vice versa. All the computers 1 - 7 can access WAN without any problems.
The routers I currently have are not VPN capable, but I am not sure VPN
would be the right answer here either.
Any help would be greatly appreciated.
++Pietu
- Next message: Duane Arnold: "Re: Firewall with low overhead?"
- Previous message: Russell: "Re: Firewall with low overhead?"
- Next in thread: Drew Cutter: "Re: Two SPI firewalls layered"
- Reply: Drew Cutter: "Re: Two SPI firewalls layered"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
