ZS3 – Config advice request

Home Page Forums Network Management ZeroShell ZS3 – Config advice request

This topic contains 2 replies, has 0 voices, and was last updated by  rmorris 4 years, 9 months ago.

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • #43865

    rmorris
    Member

    Hello,

    I am looking for advice at how best to configure my ZeroShell install in the following scenario:

    I have 2 x ISP, 1 x Smoothwall Firewall/filtering.

    I have installed ZS3 with 3 nics, eth00 (LAN), eth01 (ISP1), eth02 (ISP2).

    I hope to have things setup as follows:

    Everything on my LAN goes through the Smoothwall firewall. Everthing coming in/out of the smoothwall goes to the Zeroshell. Zeroshell then load balances to the two ISP’s.

    Ascii Art diagram:

    ISP1 ISP2
    (DHCP) Static IP
    | |


    | |


    eth01 etho02
    dynamically allocated 10.168.169.168
    | |


    | ZeroShell3 loadbalance |


    |
    192.168.10.9
    |
    |
    192.168.10.10
    |


    | Smoothwall filter |


    |
    172.16.0.1
    DHCP serving LAN clients

    [Apologies – preview suggests my diagram will not make much sense]
    So my question is: is this possible?
    If so – any advice on IP setup?
    I want to keep my smoothwall as I have filtering policies already setup.

    Thank you,

    Richard.

    #53199

    rmorris
    Member

    Hello,

    Further to my first ever post above – did I word it correctly?

    Does anyone have any suggestions as to where I might start?

    I notice more than 40 views to this thread but no contributions!

    Thanks in advance,

    Richard.

    #53200

    lannet2k
    Member

    Hi,
    it seem to be correct.
    I do all the work only with ZS, I also have 2 ISP both dinamic and I use the Loadbalance and seem to works OK the only thing that I also do is the firewall and DHCP all inside ZS.
    I tested also a configuration like you suggesting ( having the DHCP and Firewall on another hardware after the ZS HW ) but it add some latency to the traffic so I dismiss the second firewall and setup all in ZS.
    Cya

    #53201

    DrmCa
    Participant

    That’s my config as well, except that ISP assigns static IPs to my 2x dry DSL loops.

    I have DHCP and handful of FW rules on ZS, but we must keep in mind that L7 filter is not working!

Viewing 4 posts - 1 through 4 (of 4 total)

You must be logged in to reply to this topic.