How To Allow Public Access To A Web Server - ZyXEL Communications ZyWALL USG Series Application Notes
Unified security gateway
Hide thumbs
Also See for ZyWALL USG Series:
- Reference manual (426 pages) ,
- Application note (184 pages) ,
- User manual (150 pages)
Table of Contents
Advertisement
4.6 How to Allow Public Access to a Web Server
This is an example of making an HTTP (web) server in the DMZ zone accessible from the Internet
(the WAN zone). In this example you have public IP address 1.1.1.1 that you will use on the WAN
interface and map to the HTTP server's private IP address of 192.168.3.7.
Figure 45
4.6.1 Configure NAT
Create a NAT rule to send HTTP traffic coming to WAN IP address 1.1.1.1 to the HTTP server's
private IP address of 192.168.3.7.
Click Configuration > Network > NAT > Add > Create New Object > Address and create an
1
IPv4 host address object named DMZ_HTTP for the HTTP server's private IP address of
192.168.3.7. Repeat to create a host address object named Public_HTTP_Server_IP for the public
WAN IP address 1.1.1.1.
Configure the NAT rule.
2
For the Incoming Interface select the WAN interface.
Set the Original IP to the Public_HTTP_Server_IP object and the Mapped IP to the
DMZ_HTTP object.
HTTP traffic and the HTTP server in this example both use TCP port 80. So you set the Port
Mapping Type to Port, the Protocol Type to TCP, and the original and mapped ports to 80.
Keep Enable NAT Loopback selected to allow users connected to other interfaces to access the
HTTP server .
Public Server Example Network T opology
175
Advertisement
Table of Contents
