Re: Help . . . . Mysterious DMZ problem
- From: "Miguel Harper" <piggyshark@xxxxxxxxxxx>
- To: isalist@xxxxxxxxxxxxx
- Date: Thu, 28 Feb 2002 21:04:28 -0700
Config Of Packet filters?
Okay if anybody is in the office this would really be appreciated. My
problem is the configuration of the packet filters and actually enabling
them. I just can't get anything going out or in the DMZ NiC. The
webserver in the DMZ can't ping or surf anything on the outside.
From what I understand it should be 1 pair of outbound and inbound of
HTTP (80), DNS, TCP(53), UDP(53) for the DMZ nic and Webserver in the DMZ.
IP Addresses
I read some of the ip configuration set ups. What baffles me is what you
mean by subset. Wouldn't the simplest config be all public IP's would be
on the same subnet, for example: subnet = x.x.x.192, Isa External Nic
=x.x.x.180, DMZ nic= x.x.x.181, WebServer in DMZ = x.x.x.182.
The only hopeful thing I see right now is that from ISA I can ping the DMZ
nic, which of course is on ISA since this is a tri-homed setup, and
internal clients can ping this too.
Possible Hardware Issues
If the issue was the NIC of the Webserver then the little icon down
beside the clock wouldn't show up? Also I wouldn't be able to ping
127.0.0.1 right? But all of this stuff checks out
Other related posts:
