Filter
Top Products
• Source Interface: lan
• Destination Interface: any
• Source Network: 10.0.0.0/24
• Destination Network: all-nets (0.0.0.0/0)
3. Click OK
Scenario 2
Here the NetDefend Firewall in Transparent Mode separates server resources from an internal
network by connecting them to a separate interface without the need for different address ranges.
All hosts connected to LAN and DMZ (the lan and dmz interfaces) share the 10.0.0.0/24 address
space. As this is configured using Transparent Mode any IP address can be used for the servers, and
there is no need for the hosts on the internal network to know if a resource is on the same network or
placed on the DMZ. The hosts on the internal network are allowed to communicate with an HTTP
server on DMZ while the HTTP server on the DMZ can be reached from the Internet. The
NetDefend Firewall is transparent between the DMZ and LAN but traffic is still controlled by the IP
rule set.
Figure 4.21. Transparent Mode Scenario 2
Example 4.18. Setting up Transparent Mode for Scenario 2
Configure a Switch Route over the LAN and DMZ interfaces for address range 10.0.0.0/24 (assume the WAN
interface is already configured).
Web Interface
Configure the interfaces:
4.7.3. Transparent Mode Scenarios Chapter 4. Routing
215