Re: new install watchguard
From: Leythos (void_at_nowhere.com)
Date: 07/02/04
- Next message: Ahmed,N: "confusing- need your comments-"
- Previous message: george: "Re: new install watchguard"
- In reply to: george: "Re: new install watchguard"
- Next in thread: george: "Re: new install watchguard"
- Reply:(deleted message) george: "Re: new install watchguard"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 02 Jul 2004 19:18:29 GMT
In article <s9GdnYDE-6IhLHjd4p2dnA@adelphia.com>, grroberts@adelphia.net
says...
> So currently I have a cisco 1720 I can just take the NAT stuff off and pass
> everything through to the firewall. Do I just make the Ethernet port on the
> router the same as the public IP address on the serial interface or use a
> different public address I think the ISP gave us 3 or 4 of them.
>
> Sorry never set one of these up. Just trying to figure out my options
> before I do anything.
I'm not exactly sure - the 1720 is a router, you should have X number of
IP, make the firewall public side the first of them, in fact, assign it
the fist IP in the series, then add the others, make sure that you get
the default gateway and the mask (it might be a /30) correct for the
public side.
Once you get it setup for public, setup the trusted side with your
internal addresses - don't connect it to the network yet. Set the
firebox to provide DHCP services - just to test everything.
Now, take one computer that is DHCP enabled, connect it to the LAN, same
one you are using to setup the FB will work - since you are going to
need the management interface. Connect the FB External to the CISCO,
connect the PC to the Trusted port, turn on the PC, get an IP, and as
long as you've permitted DNS and HTTP outbound, then you should be able
to browse to google.com and get a page.
Now that you know the system works, you can expand on it from there.
You could also leave the CISCO and router in place and set the FB up on
one of you unused public IP to test it - in fact, unless you are using
the other IP, I would suggest that you use one of those spare public
addresses until you get use to working with the FB.
One more thing - please post at the BOTTOM of the message, it follows
usenet etiquette standards.
-- -- spamfree999@rrohio.com (Remove 999 to reply to me)
- Next message: Ahmed,N: "confusing- need your comments-"
- Previous message: george: "Re: new install watchguard"
- In reply to: george: "Re: new install watchguard"
- Next in thread: george: "Re: new install watchguard"
- Reply:(deleted message) george: "Re: new install watchguard"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
