[mdlug] Replacing D-Link router with Smoothwall box

[Michael ORourke]

Lug Nuts,

I have a small network with a Linux (OpenSuSE 11) server installed.  I am 
considering replacing the D-Link router with a Smoothwall box (Linux 
router/firewall).  But after reading up on the Smoothwall docs, I'm not sure 
of the best way to proceed.  The Linux server is running Samba, Apache, and 
soon to be running a mail server.  According to the Smoothwall docs, it 
looks like you would normally put the server in the DMZ (orange network) 
because it provides external facing services (i.e. web).  But that will 
cause problems with the Samba services as it will be on a different subnet 
than the green network (internal clients) and it will require extra ports be 
opened between the green and orange networks.  Some Google searches have 
suggested that you NOT put Samba on the orange network.
Here are a couple of possible solutions.  For one, I'm not going to build a 
second server with just Apache and Postfix on the orange network (DMZ), that 
just seems like a waste of resources.  But I could go with a red-green 
configuration and port forward web & email traffic to the green network 
(internal), just like the D-Link does now.  Or maybe setup a second nic 
(eth1) in the server on the green network (internal) and bind samba to that 
interface and still have eth0 on the orange network (DMZ) protected by the 
smoothwall box.  Any other suggestions out there?

Thanks,
Mike