Firewalls: Firewall Arquiteture

Firewalls
(September 1997)

Indexed By Thread: [Previous] [Next]

Subject:	Firewall Arquiteture
From:	Edierley Batista Messias <ebm @ dcc . fua . br>
Date:	Wed, 24 Sep 1997 10:35:11 -0300
To:	firewalls @ GreatCircle . COM
Cc:	ebm @ dcc . fua . br

Hi Everbody,

I would like to ask a question for you!!!!

I need to build a Firewall on the site http://www.fua.br
I research for a lot of  Firewalls Arquiteture.
And I found the 'Screened Host' Arquiteture, that is good for us,
some thing like this:



(**********)
( INTERNET )
(**********)
     |
     |
 ----------
 | ROUTER |
 ----------
     |
   -----
   |HUB|
   -----
     |
--------------------------------------------------------
    |              |              |               |
 ----------   ----------    --------------   -----------
 |MACHINE1|   |MACHINE2|    |BASTION HOST|   |MACHINE n| 
 ----------   ----------    --------------   -----------

My question is:
 Do I need another HUB to separate the Bastion Host,
 from the others machines on the net, to garantee security, to garantee
 that the packets that coming from the router, pass first in the Bastion Host
 and later to the others machines?
 

Thanks for everyone.

------------------------
University of Amazonas
http://www.fua.br

Edierley Messias
ebm @
 dcc .
 fua .
 br
------------------------

Follow-Ups:

Re: Firewall Arquiteture
From: "R.Mac" <rmac @ netmentor . com>

Indexed By Date	Previous:	RE: two questions! From: "Stackpole, Bill" <BSTACKPO @ sla . com>
Indexed By Date	Next:	Re: snmp broadcasts From: Richard Trott <trott @ remus . rutgers . edu>
Indexed By Thread	Previous:	RE: two questions! From: "Stackpole, Bill" <BSTACKPO @ sla . com>
Indexed By Thread	Next:	Re: Firewall Arquiteture From: "R.Mac" <rmac @ netmentor . com>