09-23-2023, 02:12 PM
(This post was last modified: 09-23-2023, 02:18 PM by MarioMaiato.)
I will deploy this configuration at a friends house who is constantly under attack from zombie computers out there & god know who else. I believe this will stop infected inside LAN computers & IoT devices from reaching their source addresses of the ongoing hacking. It will allow for a reset & reinstall of every infected machine and IoT device on the LAN without immediate reinfection. Traffic from the LAN will pass from firewall2 to firewall1's outside untrusted; or WAN ethernet port & blocked by firewall1's WAN protections.
Most of all, the greatest benefit of this configuration will be the blocking from Firewall2's WAN configuration blocking from the DMZ. The DMZ will consist of a single ethernet cable from firewall2 WAN to firewall1's LAN port. Since there is nothing in the DMZ, there is nothing to hack into.
IF you are not familiar with the configuration for using a real firewall with Bell's GugaHub or other fiber modem/routers, refer to this article.
https://mmaiato.com/forum/Thread-Netscre...ll-gateway
Most of all, the greatest benefit of this configuration will be the blocking from Firewall2's WAN configuration blocking from the DMZ. The DMZ will consist of a single ethernet cable from firewall2 WAN to firewall1's LAN port. Since there is nothing in the DMZ, there is nothing to hack into.
IF you are not familiar with the configuration for using a real firewall with Bell's GugaHub or other fiber modem/routers, refer to this article.
https://mmaiato.com/forum/Thread-Netscre...ll-gateway