Nic cards for linux

January 17, 2010 at 18:23:30
Specs: Ubuntu 9.11
i am curious as to how the more NIC cards that can be installed the more secure you can make your network?I know some have biult in hardware linux imbeded firewalls. But how is a server which i asume can have many "pci" express slots in wich they could run many "NIC" card's i asume. How do they provide that much security?I s it to the configureing of all the cards and the tasks asighned to each or what i dont get it?

See More: Nic cards for linux

Report •


#1
January 17, 2010 at 18:37:44
I don't see how security has anything to do with how many NICs are installed. That doesn't make sense to me.

How do you know when a politician is lying? His mouth is moving.


Report •

#2
January 18, 2010 at 11:33:17
You need more network cards, to configure your firewall in a special way.
If you have 3 network cards installed, one can be configured for your local network, let's say 192.168.0.0/24, one can be used for DMZ, let's say 10.0.0.x, where you provide services to be accessed from the internet like mail server, web server, ftp server aso, and one the is configured to connect to the internet.
The firewall will be configured, to grant access from the internet to the servers services in the DMZ, but not to your local network. Also access from the local network to the DMZ is mostly not allowed.

In short words, it's used to separate local networks form the internet or internet accessable servers for security reasons.


Report •

#3
January 18, 2010 at 14:54:00
I was never a fan of using a server as a router & that's what that configuration would be doing. All that could be done with Sonicwall or a similar product.

Secondly, I would want those services on different machines.

How do you know when a politician is lying? His mouth is moving.


Report •

Related Solutions

#4
January 18, 2010 at 15:24:26
guapo

This configuration did not mean, that the services for the internet are running on the same machine.
It means that the firewall machine manages routing and permissions to lan, dmz and internet.
In the DMZ, there may be a bunch of physical servers for e.g. online shop, web or ftp server, mail server a.s.o.
The firewall machine itself did not provide any service to the internet.


Report •

#5
January 18, 2010 at 19:11:47
That's good that they would all be separate. I would still prefer Sonicwall or something similar in place of a Linux router. It's just my preference. No one has to agree.

How do you know when a politician is lying? His mouth is moving.


Report •

#6
January 18, 2010 at 22:16:40
There are many types of firewall solutions to manage that.
You can use SonicWall, m0n0wall, any Linux distribution using iptables, Windows with a special firewall solution (that's what I do not prefer), Novell Netware Server with BorderManager Firewall a.s.o.

The point is not what to use, the point is, what one can handle.


Report •


Ask Question