Dear all,

I wish to place make a very simple FIREWALL with IPTABLES. There are some issues and points to make before I do, so this post is just to see if it can be done. I know it wont be the best solution but it may be OK.

1. We have two Windows servers in a datacenter without a firewall on them.

2. We have a third LINUX server (in the same datacebter) that we hope to use IPTABLES on to act as the firewall. So external traffic hits this firewall server and then forwards onto the underlying web servers via NAT.

3. Each server ONLY has 1 external facing NIC - not great I know but thats all the supplier supplies.

Question 1 : Is it possible to use IPTABLES on the UNIX box to setup a firewall to protect the two underlying Windows servers DESPITE them only have external facing NICs?

Question 2 : I guess if the above is possible, the firewall will bear the brunt of ALL traffic - this means that anyone requesting access to the underlying servers means that traffic will constantly flow via the firewall and thus generating bandwidth costs.

Sorry to be vague - hope tihs makes sence and you experts can help a bit with the conecept.

Thanks
Brad

Hi

Can anyone help on this issue?

Thanks

Brad