jbisordi
asked on
Trying to route all access from internet to a web box on a DMZ
What is the best way to route traffice from internet to a dmz. I have foritage 100a router, all traffice that comes from internet on port 80 i want to force to a web box which will host the web site, that is not on my current network.
The fortigate has ports all ready established for the dmz but im not sure where to set this up.
THanks
Jared
The fortigate has ports all ready established for the dmz but im not sure where to set this up.
THanks
Jared
ASKER
yes the builing is accesible
internall network is on 192.168.1.0 255.255.255.0 gateway is 192.168.1.253
i have a server that is connect to same router ip 192.168.50.1 with a cross over cable server ip 192.168.50.2
want to log on external ip and get to the 192.168.50.2 server.
internall network is on 192.168.1.0 255.255.255.0 gateway is 192.168.1.253
i have a server that is connect to same router ip 192.168.50.1 with a cross over cable server ip 192.168.50.2
want to log on external ip and get to the 192.168.50.2 server.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
got it working using the dmz all externall traffic coming in on port 80 gets forwarded to 192.168.50.2 webserver that works fine however i would also like to be able to work on that computer remotlely i tried making a rule saying any traffic coming from a certain ip address get forward to that same server port 3389 for remote desktop. can that work as well? the dmz port on the foritgate is 192.168.50.1 that is the only to things on the 50 network
thanks
thanks
OK. So that DMZ will allow you to block all ports and allow the forwarding one port. That is great!
You should be able to allow multiple ports to forward to that IP doing the same thing you did before. As it is usually necessary in a lot of web servers to forward port 25, 80, 21 and others to that same server.
John
You should be able to allow multiple ports to forward to that IP doing the same thing you did before. As it is usually necessary in a lot of web servers to forward port 25, 80, 21 and others to that same server.
John
ASKER
seems to be ok hopefully i can take care of everything else remotly
Thanks
Thanks
Is that a correct understanding?
Is it in the same building and accessible?
There are a couple of ways that it can be done, but provide us with some more details... I.E. the IP subnet of the router's LAN and the IP of the web server you want to use.
John