Set up a physical firewall in front of my Uverse home network

Toggle sidebar Toggle sidebar
C

cwillard1974

Reputable
Nov 1, 2015
2
0
4,510
Hey guys, I am a first year network engineer and my company has provided me with a Fortinet Wifi firewall to play with at home. I am having some difficulty figuring out how to put it in front of my home network. This firewall is the Fortiwifi 60D and is capable of firewall/AV/WF/IPS and much more including wifi. I want to be able to play with all the features, so I don't want to just use it as a wireless router... One problem is the main data line that comes in from AT&T is not RJ45, but small like a phone cord, so I can't plug it into the WAN port on the fire wall... Any tips would be much appreciated!
 
Solution
B
Likely it is a form of DSL. Att calls all their things uverse even their fiber to the house and what you can actually do is greatly dependent on which you have. The simplest would be if it is DSL and you could use just a DSL Modem or a DSL route in bridge mode. Your firewall would then directly get the external ip, you may have to run pppoe though.

Unfortunately in many cases uverse is packaged with tv or other services and ATT rigs it so you can not completely replace their router or even put it in bridge mode many times.

The best you can hope for on some uverse installations is to put your second device in the DMZ of the uverse device. This should allow you to see directly attacks from the internet but you would still be...
Sort by date Sort by votes
B

bill001g

Titan
Aug 9, 2012
28,357
2,764
125,640
Likely it is a form of DSL. Att calls all their things uverse even their fiber to the house and what you can actually do is greatly dependent on which you have. The simplest would be if it is DSL and you could use just a DSL Modem or a DSL route in bridge mode. Your firewall would then directly get the external ip, you may have to run pppoe though.

Unfortunately in many cases uverse is packaged with tv or other services and ATT rigs it so you can not completely replace their router or even put it in bridge mode many times.

The best you can hope for on some uverse installations is to put your second device in the DMZ of the uverse device. This should allow you to see directly attacks from the internet but you would still be translating the address twice and will causes issues with certain forms forms of IPSEC VPN
 
Upvote 0 Downvote
Solution
jsmithepa

jsmithepa

Polypheme
Jun 14, 2014
13,096
263
60,840


U can't hook up your FW directly because it has no DSL modem. These days, because ISPs want to sell you all these other services, they tend to give you an all-in-one, Modem+Router+WIFI+VOIP+Switch box. It's convenient for most folks but doesn't help in your case.

Maybe the AT&T modem already has built-in VPN capability?

If Internet is the only service you need, can always ask AT&T, yo, can you gimme a PLAIN MODEM instead?
 
Upvote 0 Downvote
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom