w00tix
asked on
SMC->Sonicwall->Switch->Remote Web Workplace
Hello everyone,
I have seen similar posts on here regarding this type of question but I can't seem to get a grasp on applying it to my own situation.
Ultimate goal is to have users access Remote Web Workplace over the internet. We just got a Comcast SMC IP Gateway along with our 5 static IPs, and a Sonicwall TZ100.
I know there is something I am missing, but here is the information I am working with:
Public IP: 173.xxx.xxx.174
SMC LAN IP: 10.1.10.1
Sonicwall WAN IP: 10.1.10.11
Sonicwall LAN IP: 192.168.1.4
Windows SBS: 192.168.1.65
I tried configuring the firewall settings on the Sonicwall via the "public server" wizard. I tried to browse to https://173.xxx.xxx.174/remote with no luck. Looking at the Sonicwall, it said it did not recieve any packets regarding that firewall rule. Browsing to just http://173.xxx.xxx.174/ brings me to the Comcast SMC management page. Is there any type of conflict going on here?
Really, I just want the SMC router to act as a bridge, I just want it to pass all traffic striaght to the Sonicwall for filtering.
I have seen similar posts on here regarding this type of question but I can't seem to get a grasp on applying it to my own situation.
Ultimate goal is to have users access Remote Web Workplace over the internet. We just got a Comcast SMC IP Gateway along with our 5 static IPs, and a Sonicwall TZ100.
I know there is something I am missing, but here is the information I am working with:
Public IP: 173.xxx.xxx.174
SMC LAN IP: 10.1.10.1
Sonicwall WAN IP: 10.1.10.11
Sonicwall LAN IP: 192.168.1.4
Windows SBS: 192.168.1.65
I tried configuring the firewall settings on the Sonicwall via the "public server" wizard. I tried to browse to https://173.xxx.xxx.174/remote with no luck. Looking at the Sonicwall, it said it did not recieve any packets regarding that firewall rule. Browsing to just http://173.xxx.xxx.174/ brings me to the Comcast SMC management page. Is there any type of conflict going on here?
Really, I just want the SMC router to act as a bridge, I just want it to pass all traffic striaght to the Sonicwall for filtering.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you for the comments everyone, I think what I would like to do is what caskrist recommended and put a public IP on the Sonicwall (Seems the easiest). If I were to do that, should I assign the public IP to the Sonicwall WAN IP, or just hook another interface up directly to the SMC?
Right now, the LAN interface on the SMC and the WAN interface on the Sonicwall are both a private 10.1.10.0 address. If I change the WAN IP, won't that cut off communication between the two devices?
Right now, the LAN interface on the SMC and the WAN interface on the Sonicwall are both a private 10.1.10.0 address. If I change the WAN IP, won't that cut off communication between the two devices?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I don't know how it is done with your provider, but my provider manages the DSL modem. The provider has to put the modem into bridging mode. I think your subnet mask goes like this 255.255.255.248 (or maybe not, please inform us). With this situation the modem gets one public ip address, another public ip address for the sonicwall and the modem is the gateway for the sonicwall. I've seen modems which you can configure yourself, but it never hurts to ask your provider for help.
ASKER
Comcast provided the SMC IP Gateway, along with 6 IPs. One of the IPs is automatically associated with the device (173.xxx.xxx.174) and 5 are just extra. There is a option for 1-to-1 NAT...is that something could be considered 'transparent' mode? If I were to put another public IP address on the Sonicwall WAN interface, could i use the 1-to-1 NAT with that? I am going to call Comcast later today also to ask about it.
in theory yes, becuase it will NAT the public through, but it depends on how the SMC treats the IP it is allocated. Speak to comcast, they will give you the best option. They would do this stuff all the time.
ASKER
Thank you, will close this as soon as I talk to Comcast... Not sure who to award points to since all of you provided helpful information... Can I award all of you or is that too many people?
Comcast will assist you with exactly what you need. It shouldnt take you / them too long to configure.
the points are at your discretion
the points are at your discretion
For example, configure the firewall to accept on another port.
EG https://173.xxx.xxx.174:8082/remote
You will still have to ensure that the gateway is forwarding traffic. Not familiar with that device, but it should allow NAT'ing or traffic passthrough