2 separate networks on 1 firewall?

Question

I deal with the network & IT at a small business and will be looking to get a standalone firewall as our current one is just a basic one that comes with the routers.

My question is can you have 2 separate networks using the same firewall? I dont want to join them in anyway as they must be kept separate for security reasons.

My thoughts where to setup as below (providing the firewall can go in front of the routers?)

Router 1 > Switch > Computers

Internet > Firewall >

Router 2 > Switch > Computers

ede_pfau · Answer

hi,

and welcome to the forums.

There are different degrees of "security" and "isolation" of 2 networks. One would be to run 2 VLANs which cannot communicate with each other without the help of a router.

In your sketch, you don't need routers on each network as the FGT will / can do the routing.

You haven't mentioned if both networks share the infrastructure, i.e. run over the same cabling. If yes, VLANs are a practical way to keep them apart.

For higher requirements, you can virtualize the FGT. Actually, you can create 10 (9+1) virtual FGTs without any costs. This would isolate even the routing and firewall management for both networks, completely with admins, default routes, ISPs, policies etc. Of course, administration is a bit more evolved then.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded