Selecting a Firewall Configuration Mode
User Guide
33
Adding secondary networks to your
configuration
Whether you have chosen routed or drop-in, your configu-
ration may require that you add secondary networks to
any of the three Firebox interfaces. A secondary network is
a separate network connected to a Firebox interface by a
switch or hub.
Routed Configuration
Drop-in Configuration
Criterion 1
All interfaces of the
Firebox are on different
networks. Minimum
configured are external and
trusted.
All interfaces of the
Firebox are on the same
network and have the same
IP address (Proxy ARP).
Criterion 2
Trusted and optional
interfaces must be on
separate networks and
must use IP addresses
drawn from those
networks. Both interfaces
must be configured with an
IP address on the same
network, respectively.
Machines on the trusted or
optional interfaces can be
configured with a public IP
address.
Criterion 3
Use static NAT to map any
public addresses to private
addresses behind the
trusted or optional
interfaces.
Because machines that are
publicly accessible have
public IP addresses, no
static NAT is necessary.
Summary of Contents for Firebox X10E
Page 1: ...WatchGuard Firebox System User Guide WatchGuard Firebox System ...
Page 12: ...xii WatchGuard Firebox System ...
Page 44: ...Chapter 2 Service and Support 22 WatchGuard Firebox System ...
Page 61: ...Cabling the Firebox User Guide 39 ...
Page 68: ...Chapter 3 Getting Started 46 WatchGuard Firebox System ...
Page 78: ...Chapter 4 Firebox Basics 56 WatchGuard Firebox System ...
Page 156: ...Chapter 8 Configuring Filtered Services 134 WatchGuard Firebox System ...
Page 182: ...Chapter 9 Configuring Proxied Services 160 WatchGuard Firebox System ...
Page 220: ...Chapter 11 Intrusion Detection and Prevention 198 WatchGuard Firebox System ...
Page 242: ...Chapter 12 Setting Up Logging and Notification 220 WatchGuard Firebox System ...
Page 256: ...Chapter 13 Reviewing and Working with Log Files 234 WatchGuard Firebox System ...
Page 274: ...Chapter 14 Generating Reports of Network Activity 252 WatchGuard Firebox System ...