Virtual IP and NAT1:1 between LAN and DMZ

  • Hello. My server has WAN, LAN1, LAN2, LAN3, and DMZ, and I am in trouble to configure firewall rules.

    I put extra two IP addresses on WAN as virtual IPs, and used NAT 1:1 to connect to servers in DMZ.

    From ouside of my network, I can access my servers via virtual IPs. But, client computers in LAN1, LAN2 and LAN3 cannot access servers in DMZ via virtual IPs. Interestingly, they can access servers via private IP addresses in DMZ.

    What kind of rules should I add to allow clients computers in LANs to access servers in DMZ via global IPs?

    Any information is appreciated. Thank you very much.

Log in to reply