webserver behind router or switch, multiple IPs available

Posted on

webserver behind router or switch, multiple IPs available – Managing your servers can streamline the performance of your team by allowing them to complete complex tasks faster. Plus, it can enable them to detect problems early on before they get out of hand and compromise your business. As a result, the risk of experiencing operational setbacks is drastically lower.

But the only way to make the most of your server management is to perform it correctly. And to help you do so, this article will share nine tips on improving your server management and fix some problem about linux, apache-2.2, router, switch, ufw.

We are getting a new internet connection 100Mbps UP/DOWN and 4 Static IPs. Also on that connection there will be a webserver that hosts some websites for us. (Nothing too fancy).

The problem where we have in preparation to that connection is the wan setup. The idea we are considering is following:

Wan (ethernet) -> Switch -> Router/firewall -> internal network(300pcs)
                         -> Server (with UFW firewall)

And give the Router and the Server there own static IP.

Is this a good setup? Performance wise and security or do we need too put the server behind the Router.

What routers/switches do you recommend for this application?

Solution :

From security point of view, one firewall with 3 network interfaces will be enough for such a setup. You connect one interface to external network like Internet and connect another interface to the internal network, and connect the last one to the server(s) subnet which is called DMZ.

This way you can allow traffic to pass from external to DMZ and does not allow it to pass from external to internal network. Publicly accessible servers should be placed in the DMZ.

As for the products recommendations, this part is off-topic!

Leave a Reply

Your email address will not be published. Required fields are marked *