Hi all, I have a third NIC in my ASL box which handles the DMZ_Network_. In that network there are currently two machines, niether of which can use the DNS proxy. I also tried adding firewall rules allowing DNS traffic between my DMZ_Network_ and my production DNS server to no avail. Also, I can use the services on the DMZ which are setup via DNAT, I can SSH to, and access the apache servers on those DMZed hosts, but it seems I can't SSH _from_ them even though the rules are clearly defined to allow me to do that.
Basically i have IPAliases on my external iface for each host, then I DNAT _all_ traffice destined for the IPAlias -> DMZ_IPADDRESS, then in packet filter rules I setup which hosts/nets I want to allow to access those DMZ_IPADDRESSes, which seems to work (except webmin for somereason... I'll post a diff topic about the webmin thing) Basically i can't seem to route traffic FROM the DMZ hosts at all. Any help you could give would be great.
This thread was automatically locked due to age.
