> i would like to implement this beast but have one small problem, i already
> have a network (which i inherited) that has many ip addresses already
> assigned. i do not want to change them to install the firewall. i have
> heard two conflicting stories on this. borderware says that unless i can
> put the firewall on at least a different subnet i can't use it. i also
> have some third hand information that people have installed it without
> changing any address or creating any subnets.
There is no need to change any of the IP addresses of your internal network
(those behind the firewall). However, it IS necessary to have the external
interface on a different subnet than the internal interface (that is, after
all, what defines the inside and the outside of the firewall).
As a BorderWare VAR, I have run across your circumstance many times. In
general, I apply to the client's ISP (Internet Service Provider) for a new
subnet which will become the external network. The firewall then sits
between this "new" external subnet and the existing internal network.
If you have more specific questions, please feel free to email me direct.
P.S. Please ignore the state of the Web address below. It changes
dramatically next week.
| REDMOND TECHNOLOGY GROUP INC Voice +1 (604) 684 6845 |
| 1122 Mainland Street, Suite 390 Fax +1 (604) 684 6843 |
| Vancouver, BC V6B 5L1 - Canada Toll Free +1 (800) 684 6841 |
| mailto:stephen @
com STEPHEN TURNER |
| http://www.redmond.com Director of Technology |