Hi
From my understanding, internal(reserved) IP address(e.g.10.0.0.0 network)are not seen in internet(If I am not wrong). How secure will be the network in following Scenario?
WAN part of router is internet IP address(given by ISP), internal interface(LAN) is reserved IP address of 10.0.0.1. Proxy(Mail) server has two NIC(10.0.0.2 and 10.0.1.1).10.0.0.2 is connected to router and 10.0.1.1 is connected to LAN. Router is configured in way that if anything comes in port 25, send to 10.0.0.2 and this is working fine(They use proxy server to browse internet). We going to host web sides in near future(we have option in router that any request in port 80 can be send to certain NIC). I know that I am allowing anything comes in port 25,80 to go to certain NIC(sort of opening port). From my understanding, if I want to have indirect connection to That nic I need to have three ports firewall(which is very expesive for our budget) and if we want to have two ports firwall than we have to connect directly to certain NIC and again it is doing as I am doing now.
Now I want to know, shall I buy firewall with two prots or wait for while and get three port firwall? but question is will our network be safe (considering above scenario)to stay without buying firewall? What sorts of risk that I will be facing?
I am looking at product call “Watchguard SOHO” for now(which has two port, in and out).
Thank you again
Regards
Ashok
