From owner-freebsd-questions Tue Apr 21 06:27:30 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA06511 for freebsd-questions-outgoing; Tue, 21 Apr 1998 06:27:30 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from ns.insolwwb.net (root@ns.insolwwb.net [206.31.149.200]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA06490 for ; Tue, 21 Apr 1998 13:27:25 GMT (envelope-from mgrommet@insolwwb.net) Received: from work1.insolwwb.net (work1.insolwwb.net [206.31.148.2]) by ns.insolwwb.net (8.8.7/8.7.3) with SMTP id IAA23886 for ; Tue, 21 Apr 1998 08:21:45 -0500 (CDT) Message-ID: <002501bd6d8e$03f651e0$02941fce@work1.insolwwb.net> From: "Mike Grommet" To: Subject: I need guidance with a installation... Date: Tue, 21 Apr 1998 20:28:55 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.2106.4 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi guys... I need some advice.... I have been put in charge of an installation of a server running freebsd that will act as a mail server and an internet web server, plus dns for a large factory office. The actual web server setup and mail setup is simple and I feel pretty confident there but I need advice as to whether or not I have this thing figured right... Heres the plan... please point out any flaws... I am planning on setting up the in-house network on a non-internet class C , like 192.0.2.* and will set up the unix box on an internet class ip number say, 206.31.148.99 or somesuch... Now I want to have the 192.0.2.* machines to be able to surf the net and receive email and perform other net capacitities, I would assume through some sort of proxy service... this is possible right? How do I link the two networks together? I'm a little fuzzy how this works... please point me to any documentation you can think of. Now about firewalls... I've never set one up so I am a lot fuzzy here... The first question is do I even need a firewall since the ip's on the 192.0.2.* network are not internet accessible... If I should go ahead and set up a firewall, do you guys suggest one at the router level? or is it possible to run one on the same machine that will be acting as a dns server, mail server and web server? Heres a hypothetical question for you... if I set up a firewall on a machine and the network behind it is on internetable IP's, how do I govern all traffic coming into the network... the configuration I have in mind is: basically traffic comes from the router, into a hub and on the network from there... how do I make it so that all traffic goes into the actual firewall machine? Sorry for all the silly questions, I just don't know much about this and I need answers to give to the powers that be... Thanks again for any help you provide. I don't want to screw this up. Mike Grommet System Admin, and all around nice guy Internet Solutions, Inc. mgrommet@insolwwb.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message