Selecting a Firewall Configuration Mode
User Guide
31
address space across the Firebox interfaces, you can “drop”
the Firebox between the router and the LAN without
reconfiguring any local machines. Public servers behind
the Firebox use public addresses, and traffic is routed
through the Firebox with no network address translation.
Characteristics of a drop-in configuration:
•
A single network that is not subdivided into smaller
networks or subnetted.
•
The Firebox performs proxy ARP, a technique in which
one host answers Address Resolution Protocol requests
for machines behind that Firebox that cannot hear the
broadcasts. The trusted interface ARP address replaces
the router’s ARP address.
•
The Firebox can be placed in a network without
changing default gateways on the trusted hosts. This is
because the Firebox answers for the router, even
though the router cannot hear the trusted host’s ARP
requests.
Summary of Contents for Firebox X10E
Page 1: ...WatchGuard Firebox System User Guide WatchGuard Firebox System ...
Page 12: ...xii WatchGuard Firebox System ...
Page 44: ...Chapter 2 Service and Support 22 WatchGuard Firebox System ...
Page 61: ...Cabling the Firebox User Guide 39 ...
Page 68: ...Chapter 3 Getting Started 46 WatchGuard Firebox System ...
Page 78: ...Chapter 4 Firebox Basics 56 WatchGuard Firebox System ...
Page 156: ...Chapter 8 Configuring Filtered Services 134 WatchGuard Firebox System ...
Page 182: ...Chapter 9 Configuring Proxied Services 160 WatchGuard Firebox System ...
Page 220: ...Chapter 11 Intrusion Detection and Prevention 198 WatchGuard Firebox System ...
Page 242: ...Chapter 12 Setting Up Logging and Notification 220 WatchGuard Firebox System ...
Page 256: ...Chapter 13 Reviewing and Working with Log Files 234 WatchGuard Firebox System ...
Page 274: ...Chapter 14 Generating Reports of Network Activity 252 WatchGuard Firebox System ...