Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

subnet advice private vs public

Status
Not open for further replies.
gwu

gwu

MIS
Dec 18, 2002
239
0
0
US
We have a class c license for strictly hosting webservres . I need to seperate the servers into multiple networks for security reasons. All elase being equal, is it better to:

######

A)subnet the class c so the webservers stay on public IPs

internet
|
|
router--1.1.1.0/28---firewall---1.1.1.128/26---weservers
|
1.1.1.0/28
|
firewall
|
1.1.1.64/26
|
weservers


####

or

######

B)Keep one public class c (/24), and use different private subnets behind each firewall using DNAT for the web servers.

internet
|
|
router---1.1.1.0/24---firewall---10.0.1.0/24---weservers
|
1.1.1.0/24
|
firewall
|
10.0.2.0/24
|
weservers

######


Secondly , is it better to use proxy arp or assign ip addresses to the firewall for DNAT


thanks
 
Sort by date Sort by votes
I use private addressing with Dynamic NAT for all of my Internet accessible servers. It has worked out great for me. I believe it adds an extra layer of security and flexibility, although it adds a bit more complexity to your network.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

telklass
  • Locked
  • Question
Network + Subnet Mask
Replies
2
Views
37
burtsbees
burtsbees
tviman
  • Locked
  • Question
Same subnet on each side of a VPN 1
Replies
2
Views
42
tviman
tviman
JDCre63
  • Locked
  • Question
SIP sets behind CISCO firewall connecting to public IP
Replies
1
Views
53
nyy1023
nyy1023
mattbarkerlfc
  • Locked
  • Question
Overlapping subnet question
Replies
0
Views
17
mattbarkerlfc
mattbarkerlfc
NNTC
  • Locked
  • Question
Private IP interfaces lose ability to ping to public equipment
Replies
0
Views
35
NNTC
NNTC

Part and Inventory Search

Sponsor

Back
Top