<div>
ccomley-<br />
Thanks. Here is what I did and we are getting the results that we wanted. <br />
<br />
WAN interface has static IP from ISP.<br />
DMZ interface configured in transparent mode with WAN range (xxx.xxx.xxx.95-99) as network which makes the gateway for this segment (xxx.xxx.xxx.94) same as WAN IP.<br />
<br />
Thanks again.
</div>


<div>
Indeed, you can mix &quot;transparent&quot; on DMZ with &quot;normal&quot; routed on LAN, it's quit flexible when you get your head around it. Have fun!<br />

</div>


<div>
<div class="content wysiwyg-content">
Hello. I am upgrading the firewall/router for a customer who is currently using a Watchguard FB1000 appliance. We are moving them to a SonicWALL NSA 2400. In attempting to duplicate the configuration I have found that the FB1000 is using &quot;Drop In&quot; mode. They have a range of public IP addresses with the main public IP (xxx.xxx.xxx.94) being aliased on all three ports (WAN, LAN, DMZ) of the FB1000. The DMZ segment has a public server attached with the server using one of their other public IP's statically assigned to it's NIC (xxx.xxx.xxx.95) and a gateway of (xxx.xxx.xxx.94). They have VPN tunnels that terminate at both of these public IP's. How can this scenario (drop in mode with aliased public IP on multiple ports) be accomplished using the NSA 2400 enhanced firmware? Please advise and thanks in advance.
</div>
</div>


Hello. I am upgrading the firewall/router for a customer who is currently using a Watchguard FB1000 appliance. We are moving them to a SonicWALL NSA 2400. In attempting to duplicate the configuration I have found that the FB1000 is using "Drop In" mode. They have a range of public IP addresses with the main public IP (xxx.xxx.xxx.94) being aliased on all three ports (WAN, LAN, DMZ) of the FB1000. The DMZ segment has a public server attached with the server using one of their other public IP's statically assigned to it's NIC (xxx.xxx.xxx.95) and a gateway of (xxx.xxx.xxx.94). They have VPN tunnels that terminate at both of these public IP's. How can this scenario (drop in mode with aliased public IP on multiple ports) be accomplished using the NSA 2400 enhanced firmware? Please advise and thanks in advance.

Upgrading from Watchguard FB1000 to SonicWALL NSA 2400. How can &quot;DROP IN&quot; mode be achieved on SonicWALL?

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.

Hardware Firewalls

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.

Upgrading from Watchguard FB1000 to SonicWALL NSA 2400. How can &quot;DROP IN&quot; mode be achieved on SonicWALL?

Upgrading from Watchguard FB1000 to SonicWALL NSA 2400. How can "DROP IN" mode be achieved on SonicWALL?