Hi all,
I'm having a slight doubt on my DMZ design. I'm running Nokia's IPSO 3.3 +
FW-1 4.1 SP3 with the following configuration:
Nokia box has 5 interfaces:
External
DMZ in
DMZ out
Hearbeat (VRRP)
Lan
Has anyone being able to configure the following: traffic from the internet
to the web server goes through the External interface, which routes it to
the DMZ in interface which then delivers the request to the web server. This
one is multi-homed as you probably have already guessed and has the default
gateway pointing to the firewall's DMZ out interface. The replies of the
request would therefore go to this interface. Didn't have the opportunity to
test it yet but will this work? Would I have to turn IP routing on the web
side for it to work? Thanks in advance.
Regards,
Francisco Cabral
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
