Prior to installing the SunScreen software, make a map of your network. This can help you identify any potential security problems inherent in the way the network is currently connected. A diagram of your network can aid installation and should include:
Routers to the Internet
FTP, WWW or TELNET servers
Remote networks
Internal subnetworks
Your high availability (HA) configuration
Proxy services you plan to run
The following figure is an example of various types of addresses that you can use as a reference when completing your own network map.
This figure includes the following examples of different types of addresses:
The Internet is an example of a group of addresses, in this case defined as all.
The ftp-www server is an example of a single host address (172.16.1.2).
Corporate, Sales, and the Engineering hosts are examples of ranges of addresses. For example, the range of addresses in the engineering hosts, 172.16.5.2 with the netmask 255.255.255.0, is defined as a range of addresses from 171.16.5.2 to 172.16.5.255.