Hi everyone, I have a query regarding the routing of network traffic.
Site 1 has an IP address range of 10.0.2.0/24 as the untrusted DMZ network. The Trusted LAN network is 10.0.0.0/24
DNS records for abc.com point to the public IP address at Site 1, web servers etc.
Site 2 has its own connection to the Internet via a 4Mbps leased line. It has an IP address range of 10.0.6.0/24 as the untrusted DMZ network. The trusted LAN network is 10.0.4.0/22.
Between the sites is a 10Mbs Site to site link, The Site A end has an IP address of 10.0.3.1/24. The Site B end has an IP address 10.0.3.2/24. IPSec VPN Tunnel.
The query is we have public facing internet servers in the DMZ at Site 1 that MUST be relocated to site 2. Moving the servers and allocating them an IP address in the DMZ at site 2 isnt a problem.
The query is DNS. Because it can take up to 24/48 hours for the worlds DNS to update, once the servers are moved we thought about changing the rules on the Site1 firewall to forward the traffic to the server in the DMZ at Site2 across the 10Mbs link.
My query is 1. Should this in principle work and 2 would the reverse traffic go back across the Site to Site link and out through the internet connection in Site 1 or out the internet connection at Site2.
Its only a temporary measure until the DNS updates