Greetings,
Since I never received a reply, the first posting must have gotten lost
somewhere. I didn't think it was that bad of a question, so here it is again.
I have questions as to the placement of masquerading rules with respect to
a DMZ. The question is based on a DMZ using in internal and external
firewall. I know that _ALL_ traffic leaving the external firewall to hosts
on the Internet should/must be masqueraded. Does the same hold true for
the internal firewall? If so, it would seem that the DMZ becomes,
basically, an invisible network (as far as the Internet and internal
networks are concerned).
Should the hosts on the DMZ be able to see the hosts on the internal
network? Should the hosts on the internal network be able to see the hosts
on the DMZ?
Thanks in advance
- Bennett
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
