RE: Netscreen interface question

["Ofir Arkin" <ofir () sys-security com>]

Michael,

Netscreen 5, 10, 100 all have three interfaces. With these boxes you are
limited with your options.

But, with Netscreen 500 (and 1000) you have the ability to use 802.1q
VLAN Tagging. Netscreen call this concept - Virtual Systems. 

If you switches support this, than you are able to use level 2 vlans and
the firewall will support each and every vlan although connected through
one port.

You are secure as your vlan is...



Ofir Arkin [ofir () sys-security com]
Founder
The Sys-Security Group
http://www.sys-security.com
PGP CC2C BE53 12C6 C9F2 87B1 B8C6 0DFA CF2D D360 43FA


-----Original Message-----
From: firewall-wizards-admin () nfr com
[mailto:firewall-wizards-admin () nfr com] On Behalf Of Michael Condren
Sent: ד 29 אוגוסט 2001 17:04
To: firewall-wizards () nfr com
Subject: [fw-wiz] Netscreen interface question


Hi,

We are thinking of purchasing a Netscreen product to act a central
firewall 
for all traffic in and out of our site.  Currently there are 4 routers
used 
for traffic.  One for Internet access, the other three are used for 
communication with other sites over leased lines.  Netscreen firewalls
only 
have three interfaces per box.  Is it possible to use the Netscreen as a

firewall between our site and the other site when there are only 3 
interfaces on the firewall and four router LAN interfaces?  Can you
route 
traffic to go in through one interface (router1->firewall int1) and out 
through the same interface (firewall int1 -> router1)?

Thanks


_________________________________________________________________
Get your FREE download of MSN Explorer at
http://explorer.msn.com/intl.asp

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards