interent ip's on edge of network

Unanswered Question
Feb 13th, 2007

Hi all can anyone tell me the normal or most common way of say putting vpn devices, firewalls etc on the edge of the network, I.e if I had a seperate vpn box, how would this get an internet ip ? where would I situate it etc, hope you can help



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
spremkumar Tue, 02/13/2007 - 20:39

Hi Carl

Normally if you have high bandwidth capacity links subscribed at your location and have more number of tunnels being established better to have them connected onto your router which then can be connected to your firewall or vpn device. (ex: central location)

If you have less bandwidth capacity links and very less tunnels configured then you can have vpn device itself to terminate ur wan connectivity..(ex: remote locations)



carl_townshend Wed, 02/14/2007 - 01:39

so do people normally have a router, then the inside ethernet sits on the public ip ?

spremkumar Wed, 02/14/2007 - 02:01

Hi Carl

If you have router in front of the firewall then you can either have the inside ethernet of router/outside ethernet of firewall in public ip block or private ip block.

I have seen mix of them in most of the networks where these kinda setup has been deployed.


carl_townshend Wed, 02/14/2007 - 02:29

is they were in private block, I gather you would have to use nat on the router then ?


This Discussion