[ previous ] [ next ] [ threads ]
 From:  Thomas Biedorf <tom at startmovie dot net>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  How to route "real" IPs from WAN to DMZ?
 Date:  Tue, 22 Jul 2003 12:48:15 +0200
Hi all,
we are trying to setup m0n0wall for our network (we use the ISO-Image 
version). We set up a box with three networkcards. What we are trying 
to do is to route some "real" IPs from WAN to DMZ, but it doesn't work. 
LAN is working fine with DHCP.
Maybe I am missing some clues?

We do have 64 IPs (faked in this example):

The router of our ISP uses the 36. 211.83.193
I set up the WAN interface with 36. 211.83.194 and the DMZ Interface 
with 36. 211.83.195/26

The trouble is: All traffic stops at the WAN interface. If I try to 
connect from WAN to the Webserver in the DMZ on Port 80 (WebServer is 
36. 211.83.233), IMHO m0n0wall doesn't know that the 36. 211.83.233 is 
in the DMZ. Yes, I allowed to connect from WAN to DMZ on port 80.

How to route the IPs from 36. 211.83.196 to 36. 211.83.255 to the DMZ? 
All I want is that the "real" IPs used are routed to the DMZ.

Thanks for any hint!