This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Masquerading with 1 LAN and 2 WANs

I have an ASL v7 with the following:

Eth0: Internet (DSL)
Eth1: Internal LAN (192.168.100.0/24)
Eth2: External LAN (Coporate Network - 10.1.1.0/24)

I want the 192 network to be able to use the Internet. I also want the 192 to be able to access the 10.corporate network.

I DO NOT want the 10.corporate to see the 192 address, nor should the 10.corp net be able to access the internet.

I created a Masquerading rule for the 192--> Internet and it works. However, when creating the rule the GUI would not permit me to Drag the 'Internal Network' object into the Network Box - it seems to only permit ANY in there. Does that mean that this masq. rule is also permitting/NAT'ng the 10.corporate network out the Internet Interface?

Thanks

This thread was automatically locked due to age.

Parents

0 SilverOne over 18 years ago

Scrif,

Thats normal(1 rule per Network Segment), you have to make 2 masq.rules if you want that the 10.*** adres goes to the internet(eth0)

So the masq rule Internal network (192.168.100.0/24)->(Interface)Internet is OK!

You can make a rule for the External Lan(eth2);
External Lan network(eth2)->(service)Any->INternal NetworkDROPput this to rule1

**These Networks are going over separate Switches I asume??**
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 SilverOne over 18 years ago

Scrif,

Thats normal(1 rule per Network Segment), you have to make 2 masq.rules if you want that the 10.*** adres goes to the internet(eth0)

So the masq rule Internal network (192.168.100.0/24)->(Interface)Internet is OK!

You can make a rule for the External Lan(eth2);
External Lan network(eth2)->(service)Any->INternal NetworkDROPput this to rule1

**These Networks are going over separate Switches I asume??**
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data