Welcome, Guest. Please login or register.
Did you miss your activation email?
Saturday 23 November 2024, 08:26:08 am

Login with username, password and session length

CLICK HERE for the The official Endian Roadmap and Issue tracker
14258 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  Access from the Internet to DMZ
0 Members and 0 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Access from the Internet to DMZ  (Read 25397 times)
newbie09
Jr. Member
*
Offline Offline

Posts: 2


« on: Tuesday 16 June 2009, 12:58:57 am »

H there,

I got a problem, which I cannot solve on my own, so maybe someone can help.

I got 16 public IPs for my DMZ (orange) so I wanna use them for webservers.
This is how it looks: (addresses changed):

123.12.34.208 to 123.12.34.223, netmask is 28, so subnetmask is 255.255.255.240

123.12.34.222 is the router of the ISP, 123.12.34.209 is orange on Endian.

The DMZ should be accessible from the Internet for everyone, but I do not know where to make changes at Endian configuration.
If I connect the servers directly to the router, everything works fine.

Someone who can help??

Thanks.

Michael
Logged
StephanSch
Full Member
***
Offline Offline

Gender: Male
Posts: 57


« Reply #1 on: Tuesday 16 June 2009, 01:44:38 am »

Is it correct that you use the same subnet for orange and red?
That will not work.

You have to use a different subnet for orange and assign your public IPs to the red.
Logged
newbie09
Jr. Member
*
Offline Offline

Posts: 2


« Reply #2 on: Tuesday 16 June 2009, 04:50:18 pm »

Red and orange have different subnets and different addresses.

red is 123.123.13.148/30
orange is 123.123.34.208/28 (addresses changed, of course)

the version of the Endian is 2.2 and I got 4 NIC inside. green, red, orange and blue (because of the hotspot)

But don't get this working...
Logged
Steve
Sr. Member
****
Offline Offline

Posts: 108



WWW
« Reply #3 on: Tuesday 16 June 2009, 08:11:25 pm »

You will need to use Source NAT.

Have a look at http://docs.endian.com/2.2/en/efw.firewall.html


Logged

                          
itguy12
Jr. Member
*
Offline Offline

Posts: 3


« Reply #4 on: Saturday 22 August 2009, 12:30:52 am »

Steve, would you be able to go into more detail on the actual setup here? I have a similar situation and cannot figure out how to configure SNAT to work for 1:1 private-to-public addressing. Thanks!
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.071 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com