You only need one firewall for a DMZ. Most firewalls have more than two
interfaces.
1 interface for the inbound traffic
1 interface for the private network
1 interface for the DMZ
> I heard that you can make a DMZ with a router and a firewall. Is that a good
> way to make a DMZ, or should you use 2 firewalls?
You can, and yes that's a good way to make a DMZ. However, it depends on
what you need. I could only imagine two or more firewalls if you had two
or more ISP connections, or private interconnecting networks.
It also depends on the type of firewall. I imagine there are firewalls
out there that only support two interfaces, and in that case, if you have
to deal with more than one network, needing another firewall. But who
would want shuch an unfeatured firewall in the first place?
A pc with iptables, and three nics would do, or Cisco Secure PIX firewall.
Both make excellent firewalls.
--
Rory Savage, Senior Systems Administrator
Nando Media: www.nandomedia.com
email: [EMAIL PROTECTED]
aol im (PiasElihU)
919-836-5987 (Office)
FreeBSD: http://www.freebsd.org
On Tue, 2 Apr 2002, Derrenbacker, L. Jonathan wrote:
>
> Thanks in advance.
>
>
