|
Title: Access from the Internet to DMZ Post by: newbie09 on Tuesday 16 June 2009, 12:58:57 am H there,
I got a problem, which I cannot solve on my own, so maybe someone can help. I got 16 public IPs for my DMZ (orange) so I wanna use them for webservers. This is how it looks: (addresses changed): 123.12.34.208 to 123.12.34.223, netmask is 28, so subnetmask is 255.255.255.240 123.12.34.222 is the router of the ISP, 123.12.34.209 is orange on Endian. The DMZ should be accessible from the Internet for everyone, but I do not know where to make changes at Endian configuration. If I connect the servers directly to the router, everything works fine. Someone who can help?? Thanks. Michael Title: Re: Access from the Internet to DMZ Post by: StephanSch on Tuesday 16 June 2009, 01:44:38 am Is it correct that you use the same subnet for orange and red?
That will not work. You have to use a different subnet for orange and assign your public IPs to the red. Title: Re: Access from the Internet to DMZ Post by: newbie09 on Tuesday 16 June 2009, 04:50:18 pm Red and orange have different subnets and different addresses.
red is 123.123.13.148/30 orange is 123.123.34.208/28 (addresses changed, of course) the version of the Endian is 2.2 and I got 4 NIC inside. green, red, orange and blue (because of the hotspot) But don't get this working... Title: Re: Access from the Internet to DMZ Post by: Steve on Tuesday 16 June 2009, 08:11:25 pm You will need to use Source NAT.
Have a look at http://docs.endian.com/2.2/en/efw.firewall.html Title: Re: Access from the Internet to DMZ Post by: itguy12 on Saturday 22 August 2009, 12:30:52 am Steve, would you be able to go into more detail on the actual setup here? I have a similar situation and cannot figure out how to configure SNAT to work for 1:1 private-to-public addressing. Thanks!
|