Hello
I'm trying to implement a 220 firewall instead of our existing iptables (ClearOS) based firewall machine (it's a bit unstable)
Our setup is primarely based on a DMZ and a internal LAN
Our hosting provider hosts the network gateway (.1) because we are doing some telephony services, and we have not direct access to this.
All our servers (primarely application and web servers) are connected via the DMZ and have a external ip defined (ex: 10.20.30.10) (not the real ip)
Our database servers is placed in the LAN with 192.168.0.* adresses.
I've tried to illustrate the setup in the attached document.
I have replicated all the forward rules from our old firewall into the "Firewall -> Rules" section along with a couple of DNAT rules.
Ex could be -> -> allow
I have also made some -> -> ALLOW rules
But when i try to replace the old firewall with this, nothing works, and the log displays everything is Default DROP'ed
What am i missing? Static Routes?
Please advice
This thread was automatically locked due to age.
