folks,
ive got a question about a firewall config problem that i need clarified.
so im wondering how this whole DMZ firewall configuration works. specifically, i want to know which packets are allowed -- from what? and to where? moreover, if i am including NAT in my whole networking topology, will this affect anything?
in general, i want to put a DNS and a WWW server in the DMZ, while have several internally accessible workstations in my LAN. so i have 3 NICs in my firewall/router... 1 for the internet, 1 for the DMZ, and 1 for the internal LAN. there is documentation on how to configure the firewall to allow packets for the internal LAN, but i am most fuzzy about how the DNS and WWW servers will be accessed... both internally and publically?
now the engine that i am using to set this up is with a 2.4 linux kernel with iptables... as i am only a novice at that, it is tough for me to figure out how to make it work securely... does anyone have any hints or suggestions?
additionally, if anyone knows of any sites that contain more information, please let me know
thanks all