Forward external IP to DMZ port

Security Gateway Discussions
Post Reply
SG51_user
Posts: 13
Joined: 12 Nov 2009, 07:53
Location: Germany

Forward external IP to DMZ port

Post by SG51_user » 06 Apr 2011, 18:35

Hello,

is there any where to forward the complete traffic which arrives on the WAN port on an ARP published IP to e.g. the DMZ port without changing any packet infos?
To this port a proxy is connected which will handle the traffic.

The used system is a SG55.

Kind regards,
Matthias

Roger
Posts: 6
Joined: 16 May 2008, 10:57

Re: Forward external IP to DMZ port

Post by Roger » 11 Apr 2011, 08:38

Hi,

It depends. You will off course change the MAC address, but apart from that it should be fairly straight forward. Just an allow rule and the packet will be forwarded. You could off course do an Fwdfast for the incoming and outgoing traffic to and from that IP, but that would only make sense if the firewall doesn't see all packets.

danilovav
Posts: 181
Joined: 10 May 2009, 08:16
Location: Moscow, Russia
Contact:

Re: Forward external IP to DMZ port

Post by danilovav » 07 May 2011, 07:35

If getting of the same source port numbers is important for you, make transparent mode between WAN and DMZ and use public IP there
If no - SAT+NAT wan/all-nets core/wan_add_ip all_services, SAT: new destination = your_dmz_host
BR, Alexandr Danilov

Post Reply