[ previous ] [ next ] [ threads ]
 
 From:  "Claudio C." <e1 underscore ch4c4l at msn dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  1:1 NAT
 Date:  Thu, 03 Nov 2005 21:15:31 +0000 
Hello guys!

I defined a 1:1 NAT and the arp proxy but now i am not sure about what rules 
do I have to define in the firewall in order to let peoble enter my web 
server and this respond back?

m0n0wall WAN IP=200.0.0.1
              DMZ IP =10.1.1.1
              LAN IP= 192.0.0.1

Web Server IP = 10.1.1.2  GW=10.1.1.1

ARP Proxy in WAN interface of m0n0=200.0.0.2

NAT 1:1 = 200.0.0.2 ->10.1.1.2

am I missing something?
anyway...I am not sure on how to allow inbound and outbound traffic to 1:1 
NAT mappings.
I only have two rules define:
"PASS LAN -> anywhere" //LAN interface
"PASS DMZ subnet -> anywhere *but* LAN" //DMZ interface
(¿whats the differene between puting dmz subnet instead of an *?)

hope you can help me out guys....I'll apreciate it!

Rgards!