Is there a correct way to show the internal IPs when NATing between DMZ(s) while showing the external IP to the outside world?
I had two rules, the first translates incoming to the correct internal IP. The second translates outgoing to the correct external IP.
The problem was that computers talking between DMZs were seeing the external IPs - not what we wanted.
So... I created a third rule, alphabetized to appear before the outbound NAT, that keeps the internal IP the internal IP when talking to the DMZ. (Basically: When Source=internal_system and Dest=DMZ_LAN, change Source=internal_system.)
This works but I don't know if it is the right way of doing things... Suggestions? Ideas?
Thanks!
~micah
This thread was automatically locked due to age.
