6.2 Adding an Outbound Firewall
In this scenario, Company A is running TCP/IP on the network. Company A wants to use Novell BorderManager as an outbound firewall only, as shown in Figure 6-2. Company A wants to be able to do the following:
-
Add an outbound-only firewall to secure the network
-
Use a dial-up connection to the Internet Service Provider (ISP)
-
Allow only internal users on the intranet to access the Internet
-
Prevent Internet users from accessing or viewing the intranet
The following Novell BorderManager components are used to implement this scenario:
-
Packet filtering
-
Network Address Translation (NAT)
-
Proxy Services Transparent proxy application
-
Access control
Figure 6-2 Outbound-Only Firewall
To implement Novell BorderManager as an outbound-only firewall on the network, Company A must perform the following general sequence of steps:
-
Install Novell BorderManager and enable packet filtering on public interfaces during the installation.
For more information on Novell BorderManager installation procedures, see Novell BorderManager 3.9 Installation Guide .
-
Use iManager enable and configure NAT for the WAN call to the ISP.
-
Use tiManager to enable and configure the Transparent proxy application.
-
Using iManager to enable and configure access control rules for the intranet users.
For more information on configuration procedures, see Novell BorderManager 3.9 Administration Guide .