D-Link DFL-80 User Manual page 32

Ethernet vpn firewall

Hide thumbs Also See for DFL-80:

Quick installation manual (16 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

Table of Contents

Enabling DHCP Support:

Step 1. In the Dynamic IP Address window, click Enable DHCP Support.

Step 2.

Domain Name: The Administrator may enter the name of the

Internal network domain if preferred.

Step 3.

Domain Name Server: Enter in the IP address of the DNS Server

to be assigned to the Internal network.

Step 4. Client IP Address Range 1: Enter the starting and the ending IP

address dynamically assigning to DHCP clients.

Step 5. Client IP Address Range 2: Enter the starting and the ending IP

address dynamically assigning to DHCP clients. (Optional)

Step 6. Click OK to enable DHCP support.

Step 7. Lease Time: Enter the hour for this configuration to last.

DNS-Proxy

The DFL-80's Administrator may use the DNS Proxy function to make the

DFL-80 Firewall act as a DNS Server for the Internal and DMZ network. All

DNS requests to a specific Domain Name will be routed to the firewall's IP

address. For example, let's say an organization has their mail server (i.e.,

mail.dfl80.com) in the DMZ network (i.e. 192.168.10.10). The outside Internet

world may access the mail server of the organization easily by its domain

name, providing that the Administrator has set up Virtual Server or Mapped IP

settings correctly. However, for the users in the Internal network, their

external DNS server will assign them a public IP address for the mail server.

So for the Internal network to access the mail server (mail.dfl80.com), they

would have to go out to the Internet, then come back through the Firewall to

access the mail server (loopback). Essentially, the internal network is

accessing the mail server by a real public IP address, while the mail server

serves their request by a NAT address and not a real one.

This odd situation occurs when there are servers in the DMZ network and

they are binded to real IP addresses. To avoid this, set up DNS Proxy so all

the Internal network computers will use the DFL-80 as a DNS server, which

acts as the DNS Proxy.

If you want to use the DNS Proxy function of the DFL-80, the end user's

main DNS server IP address should be the same LAN IP Address as the

DFL-80.

Table of Contents

D-Link DFL-80 User Manual page 32

Related Manuals for D-Link DFL-80

Related Products for D-Link DFL-80

Table of Contents