It would seem that I am not nearly as clear on how to set up my firewall as I thought. I am trying to get all the planning done before purchasing GnatBox, but I have hit a wall, because in the past the only firewalling I have used is packet filters on the router. So, here is my scenario, and if anyone would like to comment on it, I would appreciate it.
Just to be simple about it, I will give the info my ISP gave me, with IPs changed around a bit. Useable address range: 210.240.164.130-158 Subnet mask: 255.255.255.224 Gateway: 210.240.164.129 For my workstations, we use a proxy server. For the servers, it is quite clear to me how to "put 'em on the internet", but what I want to do is put them behind the GnatBox. I guess I do not grok how to do this while preserving the "real" IP addresses for my servers. Do I further divide the subnet? If I put them on the DMZ, they wind up needing a different address depending on whether you are accessing them from the External network or the Protected network. Maybe I just have not had enough coffee yet, but I am really confused. Someone care to help? BTW, all of the important servers are Unix of some variety, so we have all the configurability there we need. I also operate my own DNS and have complete control of the entire domain in case I have to play wierd name resolution games... Thanks in advance, -Bryan -- Bryan T. Schmidt Systems/Network Administrator [EMAIL PROTECTED] Profitool Inc.
