I am administering a small Network with some Linux boxes as servers and some
Windows based clients.
Now i am thinking about expanding this network with some additional
The purpose of my thread is, to get some advice of you guys on how you would
set this whole thing up, concerning the architecture of the network.
For the moment the network looks like this:
1. Linux box with 2 NICs:
- Firewalling between NIC1 (Internet Modem) and NIC2 (LAN)
2. Linux box:
- Samba, being the fileserver for the network as well as the PDC and
3.-7.: Windows clients
Now my situation is the following:
- I want to add the following servers:
- VPN having access to the windows domain of samba
- I have 2 further PCs at my disposal (ranging from 400MHz to 850MHz)
My question is, on how I should design this network to make most sense in
terms of security and network logic. For instance a question would be if I
can set up the Proxy on the same box as the firewall with it's two NICs, or
if I should move it to a sperate PC having also 2 NICs, and to connect it's
NIC1 to the firewall and it's NIC2 to the LAN.
For instance: Does it make sense to do the following:
DSL----(NIC1)[Linux1 being Firewall](NIC2)----(Nic1)[Linux2 being
on the LAN-Switch connected:
- Linux3 being: HTTP, FTP, DNS, DHCP
- Linux4 being: SMB PDC
- 5 Win clients
or is that much to complicated and overkill?
How would you design the network with the given hardware?
Where would you place the VPN-server which should have acess to the shares
on the SMB-fileserver?
Could I still pass via SSH from internet to the Linux boxes everywhere?
Thanks for any idea