[Klug-general] help to Untangle my untangle tangle
Mike Evans
mike at tandem.f9.co.uk
Thu Oct 1 13:39:53 UTC 2009
>
> ex1 --- 80 -> 80-> router ---------- 80 ---> firewall ----> server
>
> ex2 --- 80 -> 80-> router ---------- 80 ---> firewall ----> server
>
>
>
> I'm pretty sure my main issue stems from the fact that the router has an
> internal ip address. Therefore everything arriving at the firewall looks
> like it's come from the internal ip of the router which is course a
> single ip and therefore to use the same port numbers
>
Dan - I think that's exactly the point Karl's making. Once you have two
lots of stuff coming from port 80 on the router the firewall has no way
to know which is which. His suggestion is that you route ex2 to port 81
on the router so that you can then have a rule in the firewall that says
anything from port 81 on the router goes to port 80 on the second server.
Mike
More information about the Kent
mailing list