A client i deal with has a network with a single firewall machine with 3 interfaces- one to the router, one to the LAN and one to the DMZ.
We are looking at putting in place a server to run either content scanning, attachment logging and blocking, and virus scanning eg Mailsweeper, or just virus scanning eg Sophos MailMonitor. Where would the best place to put this machine? Logic tells me to put it in the DMZ and NAT the smtp feed to it both from the ISP and the internal mail server. This is ok but i'd like to be able to administer the machine and look at the logs, update the AV software from our central copy on the LAN- this is suggesting to me that i consider putting it in the LAN. I guess as ever it's a game of compromises. __________________________________________________ Do You Yahoo!? Everything you'll ever need on one web page from News and Sport to Email and Music Charts http://uk.my.yahoo.com
