Transparent Mode Scenario 2; Setting Up Transparent Mode - Scenario 2 - D-Link NetDefend DFL-210 User Manual

4.5.5. Transparent Mode example
scenarios
3. Click OK.
Scenario 2
Figure 4.5. Transparent mode scenario 2
Here the D-Link Firewall in Transparent Mode separates server resources from an internal network
by connecting them to a separate interface without the need for different address ranges. All hosts
connected to LAN and DMZ (the lan and dmz interfaces) share the 10.0.0.0/24 address space. As
this is configured using Transparent Mode any IP address can be used for the servers, and there is no
need for the hosts on the internal network to know if a resource is on the same network or placed on
the DMZ. The hosts on the internal network are allowed to communicate with an HTTP server on
DMZ while the HTTP server on the DMZ can be reached from the internet. The firewall is transpar-
ent between the DMZ and LAN while traffic can subjected to the IP rule-set.
Example 4.9. Setting up Transparent Mode - Scenario 2
Configure a Switch Route over the LAN and DMZ interfaces for address range 10.0.0.0/24 (assume the WAN in-
terface is already configured).
Configure the interfaces:
Similar as shown in the previous example, first, we need to specify the involving interfaces lan, and dmz using the
example IP addresses for this scenario.
Interface Groups:
Similar as shown in the previous example. Configure both interfaces lanand dmzinto the same group.
Switch Route:
Similar as shown in the previous example. Set up the switch route with the new interface group created earlier.
Configure the rules:
1. Select the Rules section of the target system in the tree view of the Security Editor.
2. Choose New Rule... from the context menu, the Rule Properties dialog box will be displayed.
91
Chapter 4. Routing