iphonogasm Posted July 6, 2012 Posted July 6, 2012 Hi, i have an issue where i need to direct a specific port to a specific machine one a seperate subnet. I have my router at 192.168.2.xxx with a DMZ to 192.168.2.xxx. I want to direct port 21 FTP to 192.168.0.xxx. How do i do this using RRAS? So any incomming connections go via 192.168.2.xxx(ROUTER) >> 192.168.2.xxx(DMZ) >> 192.168.0.xxx(FTP Server) Thanks! Quote
ICTCity Posted July 6, 2012 Posted July 6, 2012 Don't do it. Put the FTP server on your DMZ (192.168.2.XXX) because if you create a route (which an also be impossible on some router) from DMZ to LAN you lose your security! Quote -------------------------------------------------------- Tu peux aussi crire en franais. Du kannst auch auf Deutsch schreiben. Puoi scrivere anche in italiano. --------------------------------------------------------
iphonogasm Posted July 6, 2012 Author Posted July 6, 2012 Don't do it. Put the FTP server on your DMZ (192.168.2.XXX) because if you create a route (which an also be impossible on some router) from DMZ to LAN you lose your security! Haha ofcouse this create a route to the 0.x subnet.. Super unsecure ) So let me get this right, On each subnet, all services are hosted on the DMZ, mail servers, web servers, FTP servers etc?? Thanks Quote
ICTCity Posted July 6, 2012 Posted July 6, 2012 You can do this, you can have two NICs on your DMZ server one for DMZ and other for LAN. Then you bind each service to both interfaces so you actually reach the service from both external and internal network avoiding the communication between the two nets. Quote -------------------------------------------------------- Tu peux aussi crire en franais. Du kannst auch auf Deutsch schreiben. Puoi scrivere anche in italiano. --------------------------------------------------------
Recommended Posts