Re[4]: myth of the great transition (was US Defense Department forma lly

ietf

Re[4]: myth of the great transition (was US Defense Department forma lly adopts IPv6)

2003-06-19 18:53:51

On Thu, 19 Jun 2003 18:26:17 -0700 Michel Py 
<michel(_at_)arneill-py(_dot_)sacramento(_dot_)ca(_dot_)us> wrote:

Richard Welty wrote:
the needed three legged firewall, bridging two interfaces and
using NAT on the third one, is rather more complicated than i
wanted to deploy for a budget-constrained customer. neither i
nor my client feel that there was a much of a win here, but
there weren't any other options, either.

This is a clever setup; am I guessing correctly in saying that
fortunately the IPSEC part needed to terminate on only one or two
servers and not on each host?


yes, it only needed to terminate on the server in the DMZ (the internet
facing interface and the DMZ interface are the two that were bridged,
obviously.)

richard
--
Richard Welty                                         
rwelty(_at_)averillpark(_dot_)net
Averill Park Networking                                         518-573-7592
              Unix, Linux, IP Network Engineering, Security

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), (continued) Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Theodore Ts'o Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Iljitsch van Beijnum RE: myth of the great transition (was US Defense Department forma lly adopts IPv6), Peter Ford RE: myth of the great transition (was US Defense Department forma lly adopts IPv6), Fleischman, Eric Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Bob Braden Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Eric Rescorla Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Theodore Ts'o Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Michael Thomas RE: myth of the great transition (was US Defense Department forma lly adopts IPv6), Michel Py RE: Re[2]: myth of the great transition (was US Defense Department forma lly adopts IPv6), Michel Py Re[4]: myth of the great transition (was US Defense Department forma lly adopts IPv6), Richard Welty <= RE: myth of the great transition (was US Defense Department forma lly adopts IPv6), Michel Py primary purpose of firewalls, Keith Moore Re: primary purpose of firewalls, Harald Tveit Alvestrand Re: primary purpose of firewalls, Michael Richardson RE: myth of the great transition (was US Defense Department forma lly adopts IPv6), Michel Py Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), J. Noel Chiappa Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Keith Moore Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Vernon Schryver Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), S Woodside Re: myth of the great transition (was US Defense Department forma lly adopts IPv6), Bob Braden

Previous by Date:	RE: Re[2]: myth of the great transition (was US Defense Department forma lly adopts IPv6), Michel Py
Next by Date:	RE: myth of the great transition (was US Defense Department forma lly adopts IPv6), Michel Py
Previous by Thread:	RE: Re[2]: myth of the great transition (was US Defense Department forma lly adopts IPv6), Michel Py
Next by Thread:	RE: myth of the great transition (was US Defense Department forma lly adopts IPv6), Michel Py
Indexes:	[Date] [Thread] [Top] [All Lists]