If you use public addresses, you'll either have to obtain a new range of public ips or subnet your existing range. If you have to subnet an existing range, my opinion is that using private addresses and doing NAT will be easier.
I'll leave the debate about the relative security of Natted private addresses versus public ips in the dmz to others in the list who have definite opinions about that issue. >>> [EMAIL PROTECTED] 12/16/02 10:45AM >>> Hi all, I need to create a DMZ on my firewall and I have been thinking how I should address it, the possibilities are: 1. Use public Internet addresses. 2. Use private addresses and do the required translations on the firewall. What is the best to do? What are the pros and cons of each addressing method? I would like to hear your opinions on the subject. Thanks in advance, F�bio Rocha. ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
