modem--[wan] Router A [lan] (192.168.0.1) -- (192.168.0.100) [lan] Router B
[wan] (192.168.1.1) -- Web server (192.168.1.10)
-- My
LAN (workstations, 192.168.0.xxx)
*Router A and B are Netgear/LinkSys, they do NAT (has simple build-in
firewall)
In this setup, is it secure? If someone outside hacked into my web server
(192.168.1.10), let's say they have admin right. Can they access my LAN
(192.168.0.xxx)? Suppose my LAN has a some win98 workstations, a file server
with min. security.
Newbie2000
Should be fine.
Make sure routerA is only allowing traffic of interest. i.e.: http
only and nothing else, and make sure your web server is up to the
latest OS updates. None of your web server accounts should have
default rights to the other boxes.
Strange how you placed webserver behind routerB, instead of routerA,
but am sure you have a bonafide reason.
-bobb
----------------------------
bobchen at mindspring dot com
Cisco, Checkpoint Certified.
Network Routing and Security Consultant.
Silicon Valley, USA.
Please check your config how you connect to the internet
because your wan port is connect to the webserver.
Why not your wan connect to ISP ?
Songyot
ReadyHomepage.com
Ready made website service.