I want to us a setting like this
Internet --> Fw (2 clustered) --> DMZ --> FW (2 Clustered) --> Trusted Zone.
This is what is needs to be finally.
We now hav setup with Ubuntu servers, but I think openBSD is more secure than Ubuntu and a bit lighter.
So it is option A which is suitable.
Here is my ifconfig also
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 33200
priority: 0
groups: lo
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
em0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:0c:29:d8:0a:35
priority: 0
groups: egress
media: Ethernet autoselect (1000baseT full-duplex,master)
status: active
inet 192.168.1.231 netmask 0xffffff00 broadcast 192.168.1.255
inet6 fe80::20c:29ff:fed8:a35%em0 prefixlen 64 scopeid 0x1
em1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:0c:29:d8:0a:3f
priority: 0
media: Ethernet autoselect (1000baseT full-duplex,master)
status: active
inet 192.168.7.231 netmask 0xffffff00 broadcast 192.168.7.255
inet6 fe80::20c:29ff:fed8:a3f%em1 prefixlen 64 scopeid 0x2
em2: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:0c:29:d8:0a:49
priority: 0
media: Ethernet autoselect (1000baseT full-duplex,master)
status: active
inet 192.168.9.231 netmask 0xffffff00 broadcast 192.168.9.255
inet6 fe80::20c:29ff:fed8:a49%em2 prefixlen 64 scopeid 0x3
enc0: flags=0<>
priority: 0
groups: enc
status: active
pflog0: flags=141<UP,RUNNING,PROMISC> mtu 33200
priority: 0
groups: pflog
|