Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Network Design Questions

    NAT
    2
    2
    1.5k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      blakestar
      last edited by

      In the following charts most all the servers are sitting behind the firewall using Port Forwards and Rules to allow outside (WAN) access. Is this a safe design, pros and cons to it? PFSense is running on plenty of hardware, as well as the load balancer. Would any of the server(s) be better placed in the DMZ?

      Thanks for Pro's & Con's or suggested reading!
      netsetupa.gif
      netsetupa.gif_thumb

      1 Reply Last reply Reply Quote 0
      • X
        XIII
        last edited by

        anything that is accessible to anyone (Internet or even intranet) should be on its own network for security reasons.
        if its compromised so is the rest of the network.

        -Chris Stutzman
        Sys0:2.0.1: AMD Sempron 140 @2.7 1024M RAM 100GHD
        Sys1:2.0.1: Intel P4 @2.66 1024M RAM 40GHD
        freedns.afraid.org - Free DNS dynamic DNS subdomain and domain hosting.
        Check out the pfSense Wiki

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.