EFW Support

Support => General Support => Topic started by: gedeon on Thursday 14 October 2010, 08:11:44 am



Title: How to use Endian 2.4 as a transparent firewall - please help!
Post by: gedeon on Thursday 14 October 2010, 08:11:44 am
Hi all,

I'm completely new in endian and forum-using, but searched much on the net for a solution.

I'm installing a software that wants to communicate with the server of the creator. It checks whether it has the registered public ip address on its ethernet interface.

The infrastructure is that I have an endian, I have this computer in DMZ zone (of course with LAN ip address configured) and this computer can access the internet.

I can trick the software with configuring a second ip address on the interface as eth0:0 but I also need to tell endian not to modify the packages (not to add the information: a firewall touched those packeges), so to work as a transparent firewall.

Is it possible at all?

Thank you,

Bye!


Title: Re: How to use Endian 2.4 as a transparent firewall - please help!
Post by: xsidx on Thursday 28 October 2010, 09:48:04 pm
Hi all,

I'm completely new in endian and forum-using, but searched much on the net for a solution.

I'm installing a software that wants to communicate with the server of the creator. It checks whether it has the registered public ip address on its ethernet interface.

The infrastructure is that I have an endian, I have this computer in DMZ zone (of course with LAN ip address configured) and this computer can access the internet.

I can trick the software with configuring a second ip address on the interface as eth0:0 but I also need to tell endian not to modify the packages (not to add the information: a firewall touched those packeges), so to work as a transparent firewall.

Is it possible at all?

Thank you,

Bye!

Transparent proxy enable, and Outgoing Traffic Firewall settings should allow you to do this, find the port the software is using to contact creator and give it access to the computer in DMZ or just give port full traffic access from both outgoing and incoming setting. Also you can exception the computers IP from proxy settings this should let any package go right through the firewall with no filtering what so ever. I never had that issue but maybe this can help you, let me know how it goes.