DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD General

OpenBSD General Other questions regarding OpenBSD which do not fit in any of the categories below.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 13th October 2008
milo974 milo974 is offline
Fdisk Soldier
 
Join Date: Jul 2008
Posts: 58
Question firewall for 2 adsl

hello, actually, we have a firewall with 2 network cards :
Static IP(NET)------Firewall---------lan (switch)
and an other modem router linksys (static ip NET) directly connected on the switch.

192.168.1.250 modem router (cisco) (adsl number 1)
192.168.1.73 (ip address for network card 1firewall)
192.168.0.73 (ip address for network card 2firewall)
192.168.0.0/24 (lan)
192.168.0.1 modem router linksys (adsl number 2)

we have servers that use adsl 1 and other that use adsl 2.
Our firewall is an Openbsd 4.3-release

is it possible to add a third network card and put on it the second modem router ? how to configure pf and nat ?
or pehaps, the easiest way is to put an other firewall to protect the second adsl line ?
What do you advise me?
thank's!
Reply With Quote
  #2   (View Single Post)  
Old 13th October 2008
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,125
Default

If the second modem/router is connected to the Lan switch you are not protected by the OBSD firewall at all.

Insert a third NIC on the OBSD firewall and connect the second modem/router to it.

See http://openbsd.org/faq/pf/pools.html#outgoing for a pf ruleset wich will do load balancing between two internet connections.
If some servers use the first ADSL connection and some the second one, the ruleset could be less complicated.

The most secure and recommended solution is to put all the servers in a so-called DMZ. That would require a fourth NIC though
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #3   (View Single Post)  
Old 13th October 2008
milo974 milo974 is offline
Fdisk Soldier
 
Join Date: Jul 2008
Posts: 58
Default

thank's !
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Connecting to internet via adsl router michaelrmgreen FreeBSD General 3 9th August 2009 12:29 PM
PF firewall bsdnewbie999 OpenBSD General 3 28th April 2009 12:35 PM
PPPoE -> ADSL Router (Bridge) - Slow connect? DraconianTimes OpenBSD General 0 31st December 2008 01:07 PM
Firewall routing Magoo FreeBSD General 9 4th November 2008 04:39 PM
Web GUI for firewall ? giga FreeBSD General 6 8th May 2008 05:10 AM


All times are GMT. The time now is 07:02 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick