General Discussion Route public ip's to a LAN/DMZ or any other interface

UTM Firewall requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 1 reply
Subscribers 4 subscribers
Views 3556 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Route public ip's to a LAN/DMZ or any other interface

AaronPaap over 9 years ago

Hi,

I want to route a full /29 of additional address's to another router sitting behind the sophos. on a separate LAN/DMZ (however you want to call it)

Basically the device sitting behind the UTM on that LAN port will need to have a public IP and no firewall rules.

How can I achieve this?

TIA

Aza

This thread was automatically locked due to age.

0 BAlfson over 9 years ago

If I understand what you need, Aza, I think you don't want an additional router, just a switch. Have your ISP route the /29 subnet to the primary IP on the UTM's External interface and then add a "DMZ" interface on another NIC using one of the IPs as its primary IP. Now, just configure your devices with the IP of "DMZ (Address)" as their default gateway. Remember to add firewall rules but no masquerading rule. WebAdmin and the configuration daemon automatically create the routing rules.

If these are web servers, I would consider using Webserver Protection instead. In this case, it's possible that you won't need any additional IPs.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel