News: This forum is now permanently frozen.
Pages: [1]
Topic: Bridge transparent Firewall  (Read 2554 times)
« on: April 11, 2007, 12:38:55 »
MadX *
Posts: 2

Hello,

Is it possible to have an invisible (Bridge transparent) firewall and
Nat in the same box ?
My idea is to use 3 Nics, the first two for the invisible firewall
bridge and the third with a Public IP where LAN will be connected to
and used for NAT.
But I don't know how to configure m0n0wall to be transparent.

Internet(5 Public IP)<--> nic 1 m0n0wall (Bridge transparent, no IP)
                                 |
                                 nic 2 <--> Switch 1
                                             | Server 1 with Public Ip 1 (http + mail)
                                             | Server 2 with Public Ip 2 (http + FTP)
                                             | Server 3 with Public Ip 2 (http)
                                 |
                                 nic 3 NAT & Public IP<--> Switch 2
                                                                       |LAN1(Database Server)
                                                                       |LAN2 (TSE)


For Nic 2 i will use 1:1 Nat but for Nic 3 i'm not sure.

Any suggestions for the configuration ?

Does my network schema is right ?
Thank you for your feedback.
« Reply #1 on: April 11, 2007, 23:22:57 »
cmb *****
Posts: 851

Yes it is possible, but keep this in mind:
http://doc.m0n0.ch/handbook/faq-bridge.html

instructions here:
http://doc.m0n0.ch/handbook/examples-filtered-bridge.html
« Reply #2 on: April 12, 2007, 00:28:37 »
MadX *
Posts: 2


Ok thanks, in your exemple if  i do a traceroute from outside to  111.111.111.12, does the  ip of the m0n0wall (111.111.111.10) will appear ?
« Reply #3 on: April 12, 2007, 00:32:08 »
cmb *****
Posts: 851

No, m0n0wall only has an IP in that setup for management purposes, time synchronization, etc. Traffic going from WAN to OPT passes transparently.
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines