Firewall Wizards mailing list archives

A router, a firewall, and 2 PVCs


From: David Olsen <dolsen () jcl lib wa us>
Date: Thu, 09 Mar 2000 12:36:55 -0800

Hi all,

Given the following less than ideal situation:

1-router
1-Firewall-1
1-Frame Relay connection
2-PVC’s – one PVC connects to my ISP, the other PVC connects to a branch
site.
The branch is using private IP addresses.

Traffic comes to the router and then to my Firewall-1 box.
Currently the branch site is defined as being external to the firewall.
We would like to define them as being internal to the firewall and
provide them Internet access.  I think PVCs are isolated from each other
assuming no hack at the Frame provider’s site.

Assuming we are stuck with the one Frame Relay connection:
Is this totally wrong?
Are the two PVC’s sufficiently separate that I can consider traffic on
one to be internal and traffic on the other to be external?
It seems that if the one router is configured correctly this should
work.

I realize we have one point of attack and/or failure at the router but
at this point I am short on options.


Thanks for any and all help.  Reading this list is incredibly useful.

Dave Olsen



Current thread: