I have a /29 network for WAN a /29 for DMZ and a /24 network for LAN. If I want to redirect HTTP traffic for an IP address that is part of the /29 DMZ subnet to a server on LAN:
1) Do I need to add the actual IP address as additional address to a DMZ interface?
2) If so, what should the Netmask be for the additional adress? A /29 for the network or a /32 for a host.
If I specify a netmask of /32 and later when I try to set up DNAT rule, the list of hosts and networks in the left pane lists the DMZ address, a DMZ network and DMZ broadcast interfaces all with the same values of the IP address I assigned.
Thanx
This thread was automatically locked due to age.
