Transparent Mode Scenario 2 - D-Link DFL-1660 User Manual

4.7.3. Transparent Mode Scenarios
5. Now enter:
• IP Address: 10.0.0.2
• Network: 10.0.0.0/24
• Transparent Mode: Enable
6. Click OK
Configure the rules:
1. Go to Rules > IP Rules > Add > IPRule
2. Now enter:
• Name: HTTPAllow
• Action: Allow
• Service: http
• Source Interface: lan
• Destination Interface: any
• Source Network: 10.0.0.0/24
• Destination Network: all-nets (0.0.0.0/0)
3. Click OK
Scenario 2
Here the NetDefend Firewall in Transparent Mode separates server resources from an internal
network by connecting them to a separate interface without the need for different address ranges.
All hosts connected to LAN and DMZ (the lan and dmz interfaces) share the 10.0.0.0/24 address
space. As this is configured using Transparent Mode any IP address can be used for the servers, and
there is no need for the hosts on the internal network to know if a resource is on the same network or
placed on the DMZ. The hosts on the internal network are allowed to communicate with an HTTP
server on DMZ while the HTTP server on the DMZ can be reached from the Internet. The
NetDefend Firewall is transparent between the DMZ and LAN but traffic is still controlled by the IP
rule set.
Figure 4.15. Transparent Mode Scenario 2
181
Chapter 4. Routing