The arrangement is 2 LAN's and 1 DMZ. In the DMZ we have a Mailserver serving SMTP
and a Webserver serving HTTP.
The IP of the Webserver in the DMZ is 194.25.157.86.
The IP of the Mailserver in the DMZ is 194.25.157.75.
Ther LAN's (192.168.0.x/ 192.168.1.x) are called interactive and classic and use a NIC each.
The following rules of packet filters are set:
Code:
Blackbit_Interactive_Network Any Any Allow
Blackbit_Classic_Network Any Any Allow
Blackbit_DMZ_Network DNS Any Allow
Any DNS Blackbit_DMZ_Network Allow
Blackbit_DMZ_Network SMTP Any Allow
Any SMTP Blackbit_DMZ_Network Allow
Any HTTP Blackbit_DMZ_Network Allow
go-Demo IDENT Any Allow
go-Demo DNS Blackbit_DMZ_Network Allow
There are several problems occuring:
- The servers in the DMZ are not reached from outside.
- We have an unknown IP-Spoofing:
10:19:12 192.168.0.8 138 -> 255.255.255.255 138 UDP IP SPOOFING SRC HW ff:ff:ff:ff:ff:ff:00/DST HW 01:af:00:9f:e4:08:00 -
Thanx in advance for your help.
This thread was automatically locked due to age.
