This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Confused as why this work (two interface routing)

I have added a new interface to my UTM, to use as DMZ

My internal network is in 10.100.0.0/16
My DMZ interface is in 10.200.0.0/16

I have not created any static routing/firewall entry regarding the DMZ.

Service I added to the DMZ:
NAT (Internet->DMZ)
DNS server
DHCP

For some reason my internal network can ping a 10.200.X.X host..

Thanks!

This thread was automatically locked due to age.

0 dilandau over 13 years ago

Hi,

I wouldn't expect you to need to add any static routes if you are adding an interface if the pc's on the internal network have the UTM as the default gateway.

Do you have ping allowed in the Firewall rules on the ICMP tab?

If you want to deny the traffic between the Internal network and DMZ, make sure ping, icmp etc are unchecked on the ICMP tab. Also check that your firewall rules are using the internet object and not "ANY".
Cancel
Vote Up 0 Vote Down

Cancel