No OPT1/DMZ
-
Hi,
I'm trying to setup DMZ for a server, but I have no option to enable DMZ. Not even OPT1 is available. Any suggestions?
-
How many physical interfaces do you have in the box?
-
2
-
With 2 interfaces, WAN and LAN are all you have. If you want OPT1, OPT2 etc, add more interfaces. Decent NICs are cheap.
-
So I need a physical interface? I thought a VLAN could do the job?
-
You didn't say anything previously about VLANs. A VLAN is a VLAN. WAN, LAN, OPT_x_ are physical interfaces. VLANs can act as a DMZ. A DMZ is just an isolated subnet that restricts clients from your LAN. Create your VLAN and then set its firewall rules the way you want to control access.
-
More accurately, wan is the first interface, lan is the second interface, and subsequent interfaces are all optX (incrementing starting at 1) internally. Physical or not.
You can certainly segment your network assigning VLAN interfaces as optX interfaces and configuring as KOM suggested.
-
That's what I love about this forum, I learn something new every day.
I thought that VLANs were labelled as such when they are created, and only a 3rd physical interface would be labelled with OPT1. Of course, you can just go and rename any interface to anything you want…
-
Right. Status > Interfaces is probably the easiest way to see all the naming, including the optX asssignments.