Manualshelf

User manual

ManualsBrandsBaseWall ManualsComputer equipmentDual WAN VPN Firewall VPN 2000
51525354555657585960
- BaseWall VPN 6000 user manual -
9 Wizard: DMZ setup
9.1 DMZ
A DMZ network layout stands for a virtual Demilitarized Zone. It is used to
connect servers to the Internet with a public IP-address and keep them
separated from the internal network. When a server gets comprised the
internal network is still save behind the firewall. Ideally the servers in the DMZ
get no rights to reach the LAN but there are limited rights of the LAN towards
the DMZ servers.
The firewall creates a IP-bridge to route all the traffic for DMZ servers directly
towards the machines. The IP-address that the servers get on the Internet are
directly inputted in the DMZ configuration.
9.2 Create a DMZ segment
Click on the “DMZ setup” text under “Setup subsystems” on the left-hand
side of the screen in the “Configuration” context.
One segment can only be connected to a single Internet connection. So with
multiple connection enter the connection that should be used.
Choose both the Internet connection and choose a FLEX port as DMZ port on
the firewall.
Click the “Next” button.
It is possible from the “Manage DMZ-segments” screen to add extra DMZ's on
other ports of the firewall or edit existing DMZ segments.
Page 53 / 79