On 02/23/2014 03:19 PM, Joschka Blohm wrote:
> Thanks Lee for your reply. :)
> I just understood half of it maybe because I'm a non-native speaker, but
> I can guess what your point is.
Let me be a little more clear, then. :)
Klaus is doing it in series. You go through one first, and then the
other. If one fails, all fails, unless you physically change things.
I am saying go through one OR the other. Example...
Shophos LAN 192.168.1.1/24
m0n0wall LAN 192.168.1.2/24
Plug both into the same switch to your LAN.
Sophos WAN 18.104.22.168
M0n0wall WAN 22.214.171.124
Plug both into the same switch on your WAN from ISP.
Run DHCP on Sophos only. DHCP clients see Sophos as gateway, and all
devices on LAN. (Including m0n0wall) For servers with Static IPs, point
them at m0n0wall. They will use m0n0wall as a gateway, and still see
everything on the LAN, including the sophos. Both routers are reachable
from the outside.