Looking for a replacement of my existing fw, m0n0 has come to my attention,
looks like just the fw i need :-)
However i cannot figure out the way to configure the DMZ with public ip's on
the m0n0 FW..
My current ip setup:
WAN: 188.8.131.52 (Static IP from ISP)
DMZ: 184.108.40.206/28 (assigned from ISP) - i'm not 100% sure, but my guess
is that the ISP routes all traffic to my static IP..
In my current firewall the DMZ setup is configured like this:
DMZ I/F in firewall: 220.127.116.11 (which is also default gateway for DMZ
I have replicated this setup to M0n0:
DMZ I/F IP: 18.104.22.168/28
By browsing the doc's i found that i need to Enable Advanced Outbound NAT in
order to disable NAT for the DMZ
Nothing is changed on the DMZ machines, default gateway is still
My problem is that there is no access from the DMZ machines to the internet.
In the DMZ firewall rules i have allowed access to *.* from all DMZ
In the WAN firewall rules i have allowed traffic to the DMZ machines, to
services, i.e. mail, http etc.
In fact i have'nt checked if there are any inbound access to these services,
using this setup, since the outbound acceess from DMZ is not working.
My LAN setup works fine... and i am able to ping the DMZ default GW IP from
the LAN, but nothing else (related to the DMZ :-)
Any suggestions would be great...