This is my network setup:
A computer hosting Astaro with 2 NICs, each connected to different networks.
Definitions:
INTERNAL_pc = the IP of a pc on the internal network
EXTERNAL_nw = the external network
EXTERNAL_nic = the IP of the NIC connected to the external network
theSERVICE = the port configuration that is used for NAT/packet filtering
DNAT setup:
Source: EXTERNAL_nw
Destination: EXTERNAL_nic
Service: theSERVICE
Change destination to: INTERNAL_pc
Packet filter:
Source: EXTERNAL_nw
Service: theSERVICE
Action: Allow
Destination: INTERNAL_pc
The good part:
This pretty much works as intended, at least for the NAT part, i.e. using the IP defined in EXTERNAL_nic and the ports in theSERVICE I get NATed correctly to INTERNAL_pc from a pc in the external network.
The bad part:
Without the packet filter nothing gets through, with it you open a line which makes it possible to connect directly from EXTERNAL_nw to INTERNAL_pc, which is NOT intended.
I've spent the last 2 days trying to figure this one out so any help would be most, most appreciated!!!
This thread was automatically locked due to age.
