This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Bridging firewall

I was wondering if it's possible to have a bridging firewall out of the box similar to what OpenBSD will do. I know I can split my current network into two subnets: one for the WAN port, one for the DMZ. However, I don't like to waste the IPs that are on the WAN side.

What I'd like is a bridge between WAN and DMZ with firewalling rules between them and NAT for the LAN port.

This thread was automatically locked due to age.

0 JensM over 22 years ago

Hi,

Astaro allows port forwarding, using DNAT. So you can use private IPs in the DMZ and can use your WAN addresses without wasting a single address to do the port forwarding. Just add addtional IP-Addresses to the external interface and then you can use these. This is even more economical for you can forward one ip (depending on the service) to multiple DMZ hosts.
If I shall explain that in more detail, let me know, but the manual covers that pretty well.

Kind regards,

Jens
Cancel
Vote Up 0 Vote Down

Cancel