DMZ and firewalling
-
Big picture is setting up a LAN on one NIC.
Then a DMZ NIC with multiple DMZ's that can't communicate with eachother or the LAN, but will have outbound and some inbound internet traffic.
I can't seem to figure this out. Anyone have a good how to? I seem to either block their traffic or i'm able to go sideways from DMZ to DMZ or DMZ to LAN. -
Remember to search first…..
http://doc.m0n0.ch/handbook/examples.html
-
That is great. Next step is how would i have mulitple DMZ's say 10-12 that are secure and can't go sideways?
-
I would get a vlan switch and look into virtual ip
-
currently i am using virtual IP and setting the subnets on servers and using the virtual ip on the dmz nic for their gateway. Using VLAN's would create many more rules and management would it not?
-
currently i am using virtual IP and setting the subnets on servers and using the virtual ip on the dmz nic for their gateway. Using VLAN's would create many more rules and management would it not?
Most likely not if you use aliases.