From owner-freebsd-questions  Fri Oct 11  9:12:52 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 8BEDF37B401
	for <freebsd-questions@freebsd.org>; Fri, 11 Oct 2002 09:12:51 -0700 (PDT)
Received: from priv-edtnes27.telusplanet.net (defout.telus.net [199.185.220.240])
	by mx1.FreeBSD.org (Postfix) with ESMTP id EA4A443EA9
	for <freebsd-questions@freebsd.org>; Fri, 11 Oct 2002 09:12:49 -0700 (PDT)
	(envelope-from jamesearl@telus.net)
Received: from box ([142.179.173.230]) by priv-edtnes27.telusplanet.net
          (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with SMTP
          id <20021011161249.OVAO23429.priv-edtnes27.telusplanet.net@box>
          for <freebsd-questions@freebsd.org>;
          Fri, 11 Oct 2002 10:12:49 -0600
Date: Fri, 11 Oct 2002 10:23:43 -0600
From: James Earl <jamesearl@telus.net>
To: freebsd-questions@freebsd.org
Subject: Stand-alone or combo web server/gateway
Message-Id: <20021011102343.48f93bd1.jamesearl@telus.net>
X-Mailer: Sylpheed version 0.8.3 (GTK+ 1.2.10; i386-portbld-freebsd4.6)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

I recently setup two FreeBSD machines.  One a dual-homed gateway running natd and ipfw of course, the other a web server running apache2.

The dual-homed gateway is hooked up to an ADSL Internet connection, and the web server sits behind the gateway machine, and has all port 80 traffic forwarded to it through natd.

Both machines are Pentium II's 350/400-MHz with 64MB RAM.

Now that it's all together, I'm questioning this setup.  I realize now, I could have used just one machine to do everything, especially considering my Internet connection.

I'm guessing the latency added by having the web server behind the gateway is insignificant, and of no significance to anyone pulling data from the web server down the 640Kbps pipeline! -- correct?

Is there any major security, or other advantages to Keeping these machines separate?

The one thing I thought of was that if the web server was down, the two other computers (Yup, only two!) that access the Internet through the gateway machine, can still get on the Internet!

Any suggestions?  Was this setup overkill (at least I didn't go for a GB backbone with an ADSL connection :)

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message