I need help with a specific configuration. We are adding a GNATBox firewall to a system with a client server configuration. It is asymetric, in that requests come in one way, and go out the other way. On the client side, all requests for web access go to a router, where they are serviced and passed onto the server, which essentially forwards them back, among other things. The server we want to put behind the firewall. The problem is that from the server (and the firewall's) point of view, all traffic destined for the clients comes in on the external NIC, and is unsolicited. How do I set up GNATBox to allow this unsolicited traffic through, so that the server can forward it through. Keep in mind, this is not traffic estined for the server, but back to the clients. The server is merely the gateway to the clients.
We have tried a variety of things, but the packets are denied: IP address of the server 192.168.1.2 IP of the protected firewall 192.168.1.1 IP of the external firewall 192.168.4.2 IP of the router NIC where the traffic comes from 192.168.4.1 IP of the client 192.168.250.1 Client makes a web request for 198.163.1.10. It goes through the internet through a tunnel to the router. The router services the request, and passes the data to the server through the firewall. We get this error: Possible Spoof -> 198.163.1.10->192.168.250.1 We are testing this with GNATBox light.
