look into policy routing, so that you can direct un-established traffic directly to your "dmz"
I trust you have an IOS with firewall feature set. I trust you are working hard on a comprehensive access-list to minimize the kinds of vulnerabilities you are open to. From a security standpoint, this kind of setup is strongly discouraged. If your edge router is compromised, the hacker is right in the middle of your corporate net. Chuck -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Naafi Matovu Sent: Sunday, December 09, 2001 9:09 AM To: [EMAIL PROTECTED] Subject: Dual Frame relay config [7:28591] Iam confuguring a 2600 series router with two serial interfaces both using frame-realy. The first wan port is running frame to the company WAN. The second port running frame to An ISP for internet access. The second port is to connect directely to the email server fron ethernet 0 while ethernet 1 connects to Lan. I need to be able to isolate the traffic betwwen the two wan port and most importantly route the internet traffic from Wan 1 to ethernet 0. Any help will be highly appreciated........ Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=28593&t=28591 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]