Firewall Wizards mailing list archives
Re: weird setup
From: Peter Lukas <plukas () oss uswest net>
Date: Thu, 18 Oct 2001 13:16:41 -0500 (CDT)
This is a pretty common practice. You may run into problems should you ever decide to terminate a VPN on your firewall. You will definitely run into problems if you begin advertising the RFC1918 subnet out your gateway router. ;-) Peter Lukas On Wed, 17 Oct 2001, John Smith wrote:
Hi there;
I've created a setup that I'm not sure is legitimate
in terms of RFC-compliance or standards-wise, hence
will not cause any problems in the future, so I'm
asking for your opinions.
I've put a firewall between our border router and the
rest of the network, however, while doing so I didn't
want to waste yet another network just for this, and
assigned RFC1918 IPs to firewall's and router's
interfaces that are connected directly to each other
with a cross-cable.
It was like:
Internet---->router<-----------------MY NETWORK
^
|
some legal
IP on this
interface
say x.x.x.1
and now it's like:
Internet--->router<------------->firewall<---MY
NETWORK
^ ^ ^
|-------------| |
| x.x.x.1
RFC1918
IPs on these
interfaces
It's working perfectly ok, with firewall doing the
routing now, except RFC1918 IPs showing up on the
traceroute.
I wonder if it's ok and will not cause any problems
in the future, and if there is any special name given
to such a setup.
Thanks for your help.
__________________________________________________
Do You Yahoo!?
Make a great connection at Yahoo! Personals.
http://personals.yahoo.com
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards
_______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://list.nfr.com/mailman/listinfo/firewall-wizards
Current thread:
- weird setup John Smith (Oct 18)
- Re: weird setup Peter Lukas (Oct 18)