Stefano,
If you truely mean between the router and the Internet(ISP),
than you can't do that without somebody knowing. Firewalls
would need to make use of IP addresses.
With that said, you could, however look into Sun's Sunscreen.
I think they allow for a transparent fw.
If your looking to slip a real firewall behind the router, then it
depends. How smart are the people you want to fool?
If they have any network gray matter, you can't. If your
looking to place the firewall in front of 'normal' users and
your the only network administrator, not a problem.
I'll assume(ack) that the internal clients are using the
IP address of the router (B1) as their next hop in the
default route and you not using ip unnumbered on
the router(C1 = your ISP/public network)
Let's use the following. You've got to love ASCII art - OK,
so you don't.
Internal<-->[B1]router[C1]<-->Internet
You could place the fw into your network with the address of
the routers internal IP address (B1). Then give the internal
interface of the router a new network IP address and add
an IP from the same network the external IP address of the
fw.
Now it would look like this and you wouldn't need to touch
the internal systems.
Internal<-->[B1]fw[D1]<-->[D2]router[C1]<-->Internet
HTH.
Robert
(p.s. A1 is a reserved network, not to be used in this example ;-)
- -
Robert P. MacDonald
Global Infrastructure Group, Haworth, Inc.
Voice: +1.616.393.1247
email: [EMAIL PROTECTED]
>>> "[OmNiY2K]" <[EMAIL PROTECTED]> 02/15/01 03:02AM >>>
>
>Hi to all,
>
>how can i configure firewall-1 to being a stealth firewall on win2k? I need to
>put a firewall between router and my internet network in a transparent way....so
>I can't assign IP addr to two NIC of firewall....
>
>Bye, Stefano
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
