Okies, well I posted this question initially in the wrong forum, so I will link to it here;
http://www.astaro.org/showflat.php?Cat=&Board=UBB2&Number=27924&page=0&view=collapsed&sb=5&o=&fpart=1
In essence, I have a subnet provided by my ISP, so I have 254 usable static routed IP's at my Cisco router...
The cisco plugs into my core switch (Nortel) and goes from there to the individual racks, which have the server switches (3Com or Cisco switches), the inturn go to the servers.... each IP has its own RDNS record on my internal DNS server too (but that has little relevance to this me thinks...)
Anyhow, I need a firewall which I can plug in (with 2x NIC's) between the Cisco router and my core switch, so ALL traffic going in or out of my network HAS to pass through this box... outbound traffic will have lesser rules applied, but incomming I want to have a rule for either groups or per IP, to restrict port access... I am sure this is possible with IPTables, which Astaro seems to use...
Anyhow, how would I go about installing this product though ? I have been told that both interfaces must be on a different subnet... however, how is that to work on MY network though ? As its going to be very difficult to change the IP's on every server I host (DNS records need updating etc, major problem)...
What is the best solution ? Thanx !
This thread was automatically locked due to age.
