|
This guide describes how you allow public access from the Internet to a Web
server on a DMZ. A DMZ (De-Militarized Zone), is viewed as a neutral zone inserted
between the Internet and a private LAN, to which controlled public access is
allowed. A company's Web server is a typical example of a device which may be
placed on a DMZ, as it makes sense to have less restrictive access procedures
for the Web server than for the rest of the local network.
The procedure also applies to other servers, for example,
a mail server, if you substitute any protocol and port number defined in the
firewall rules with the appropriate ones.
Technically, the DMZ is a LAN subnet, and is it configured in the 'Network'
> 'IP' section on Safepipe's management interface. Public access to the DMZ
is established through firewall rules, which you must configure in the 'Network'
> 'Firewall' section.
In the procedure below, we employ the following scenario:
In this scenario two public IP addresses are available; one for access to Safepipe's
management interface, and another for access to the Web server from the Internet.
Remember to substitute the IP addresses with the actual IP addresses used on
your network, when you follow the procedure.
|
