On 3/11/13 4:10 PM, "Matt Joyce" <[email protected]> wrote:
>Before I go ahead and start going through your questions on this one I >want to clarify is there some particular reason why you are >intentionally keeping the the real IP addresses outside of the LAN, you >are aware I presume that you can set up your interfaces on the servers >with both a real IP address and an internal one if you wanted to, that >is how I used to work it when I had my /29 set up. I would also like to recommend separate LANs for the servers and other client systems. I dislike not having a firewall between the two, because your internet-facing servers are the most likely targets of hackers. -Tom You do not need a parachute to skydive. You only need a parachute to skydive twice. ------------------------------------------------------------------------------ Symantec Endpoint Protection 12 positioned as A LEADER in The Forrester Wave(TM): Endpoint Security, Q1 2013 and "remains a good choice" in the endpoint security space. For insight on selecting the right partner to tackle endpoint security challenges, access the full report. http://p.sf.net/sfu/symantec-dev2dev _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
