|
Title: accessing orange zone from green zone via IP adress taken up in red zone Post by: secretgreen on Sunday 20 March 2011, 09:49:38 pm I have the above scenario and I'd like some feedback on the best way to configure.
Lets say green zone is 192.168.10.1/24 Orange zone is 192.168.30.1/24 Red zone had 5 public IP's now I can use DNAT and SNAT between red and orange zones, so it appears as if my servers in the orange zone have public IP's yet have protection. My question is, how does EFW behave when a workstation in the green zone tries to connect to one of my servers (in orange zone) by calling one of my public IP's (from an external DNS lookup)? Title: Re: accessing orange zone from green zone via IP adress taken up in red zone Post by: veekay on Thursday 24 March 2011, 11:41:40 am I'm not sure if this is similar to the problem I am having, but I'm interested in this as well.
Our webserver on the Orange network is accessible fine from the outside, but nothing I have tried can allow us to access it from the Green network using the full domain - it always forwards it internally. Trying to go Green -> Red -> Orange with both the Green/Red/Orange having a single external IP. I've seen posts in the past that mention something similar, but the details are missing. |