If Nokia IP330 support stealth mode, and you provide authentication service
to remote VPN user by Novell BorderMgr,
you just need 2 Internet IP for FE0/0 and NIC 1. So you can assign the left
IPs to your servers connected with PORT3.
BTW, does anyone know if Shiva VPN FW support stealth mode? Thanks very
much.
John Li
(905)475-5504
[EMAIL PROTECTED]
> -----Original Message-----
> From: Vaughn Pennington [SMTP:[EMAIL PROTECTED]]
> Sent: Thursday, December 07, 2000 1:27 PM
> To: [EMAIL PROTECTED]
> Subject: Addressing Question - PLEASE HELP!
>
> I'm hoping someone can provide me some guidance on setting up a
> dual-firewall architecture. This is my first experience using two
> firewalls together and I'm a little fuzzy on the correct way to set up the
> IP addresses on the various interfaces. First let me describe the
> environment.
>
> ------------
> Internet
> ------------
> |
> -Serial0/0-
> 2620 router
> ---FE0/0---
> |
> |
> ---Port1-------------------------
> Nokia IP330 with 3 ethernet ports
> ---------Port2-----------Port3---
> | |
> | |
> -----NIC1------- --------
> Novell BorderMgr DMZ
> Firewall/Radius --------
> -----NIC2-------
> |
> |
> ----------------
> Private Network
> ----------------
>
> My first thought was that all the interfaces would get public IPs except
> for NIC2 which would be a private address. The BorderManager box will be
> doing NAT'ing and Radius authentication. FE0/0, Port1, Port2, Port3 and
> NIC1 are all public addresses on the same subnet. Serial0/0 is an IP from
> my ISP and NIC2 is a 10.X.X.X IP. Am I correct with this config or is the
> cheese sliding off my cracker? Any help would be greatly appreciated.
> Thanks.
>
> ___________________________________________________
> GO.com Mail
> Get Your Free, Private E-mail at http://mail.go.com
>
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
