This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DMZ please

Hope somebody can help ...
I am trying to put a server on the DMZ of an ASL firewall. Now, this server has its own public IP, and should be visible from the outside through this IP, and conversely when it communicates with the outside it should be recognized via its own IP. The setup is:

ASL FW:
   Public:  222.xxx.yy.110
   Local Network:  192.168.130.1
   DMZ:  10.1.1.1

SERVER1 on DMZ
   Public:  222.xxx.yy.111
   Local Network:  10.1.1.16

SERVER1 has only one NIC, running on Linux.
Please help.
Thanks.

This thread was automatically locked due to age.

Parents

0 bkallfelz over 20 years ago

this sounds a little bit like dnat. say that every packet wich is for the external ip of server1 is translate to the internal ip of the server.
Cancel
Vote Up 0 Vote Down

Cancel
0 weasel over 20 years ago in reply to bkallfelz

Don't forget to setup your packet filter rules for that server also. But remember packet filters are run after NAT does its translation. So you will need to configure the packet filter rules based on traffic arriving at your server local address and NOT its public one.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 weasel over 20 years ago in reply to bkallfelz

Don't forget to setup your packet filter rules for that server also. But remember packet filters are run after NAT does its translation. So you will need to configure the packet filter rules based on traffic arriving at your server local address and NOT its public one.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data