Charles Farinella wrote:
On Tue, Jan 16, 2007 at 09:32:02AM -0500, Charles Farinella wrote:
I have an OpenBSD 3.9 machine with a public IP providing NAT and
firewalling for our internal network. It has 3 interfaces:
dc0: public ip from internet X.X.X.25
dc1: 192.168.100.x to internal network. This works well.
dc2: 192.168.200.x --> to Windows server.
I need to allow public access to the Windows server connected to dc2
(one port only). Currently I have a private network address assigned
to dc2 and a public one (X.X.X.26) assigned to the machine connected
to it.
I have this working, thanks for the help. :-)
=========================
# Network interfaces
external = "dc0"
internal = "dc1"
dmz = "dc2"
# Address ranges
int_add = "192.168.100.0/24"
dmz_add = "192.168.200.0/24"
ext_add = "X.X.X.25"
rdr pass log (all) on $external proto tcp from any to $external port 80
-> 192.168.200.122 port 80
rdr pass log (all) on $internal proto tcp from any to $external port 80
-> 192.168.200.122 port 80
==========================
I actually had it working and didn't realize it as I was accessing the
server via dc1 and only had the dc0 rule set. Martin Toft tipped me off
when he pointed that out to me, and indeed checking from a machine
outside of our network confirmed that. Creating the internal redirect
has solved my problem.
Thanks again.
--charlie
--
------------------------------------------------------------------------
Charles Farinella
Appropriate Solutions, Inc. (www.AppropriateSolutions.com)
[EMAIL PROTECTED]
voice: 603.924.6079 fax: 603.924.8668
