<div>
By design, the DMZ port is isolated from the other ports in the network. Otherwise, your DMZ computer becomes a vulnerability to the rest of the LAN computers in the network.<br />
<br />
As long as you understand the risks, you need to set the DMZ port to operate in Transparent Mode and map:<br />
<br />
<a href="http://www.gnswireless.com/Sonicwall_OPT_Port.htm" rel="ugc">http://www.gnswireless.com/Sonicwall_OPT_Port.htm</a><br />
<br />
Cheers!<br />
Mike
</div>


By design, the DMZ port is isolated from the other ports in the network. Otherwise, your DMZ computer becomes a vulnerability to the rest of the LAN computers in the network.

As long as you understand the risks, you need to set the DMZ port to operate in Transparent Mode and map:

http://www.gnswireless.com/Sonicwall_OPT_Port.htm [http://www.gnswireless.com/Sonicwall_OPT_Port.htm]

Cheers!
Mike

<div>
I would simply &quot;forward&quot; the ports to the desired LAN IP address and keep the system out of the DMZ (especially if you are only utilizing 4 TCP ports!) Definitly set the IP to static or &quot;reserved&quot; via DHCP. &nbsp;
</div>


I would simply "forward" the ports to the desired LAN IP address and keep the system out of the DMZ (especially if you are only utilizing 4 TCP ports!) Definitly set the IP to static or "reserved" via DHCP.  

DMZ-LAN-rule.png

<div>
Very strange, I have this setup in use for quite some time, I don't have a NAT policy for this. Could you show us the NAT policy you had to create?!
</div>


Very strange, I have this setup in use for quite some time, I don't have a NAT policy for this. Could you show us the NAT policy you had to create?!

<div>
<div class="content wysiwyg-content">
I need to allow access from the DMZ port on a TZ190 to a specific host on the private LAN port. I only need 4 TCP ports open. I can ping from LAN side to the serveron the DMZ but not the other way despite my access rules. &nbsp;This can be done, right, or is the DMZ by design not allowed to get to the LAN side?
</div>
</div>


I need to allow access from the DMZ port on a TZ190 to a specific host on the private LAN port. I only need 4 TCP ports open. I can ping from LAN side to the serveron the DMZ but not the other way despite my access rules.  This can be done, right, or is the DMZ by design not allowed to get to the LAN side?

Configure the DMZ port on a Sonicwall TZ190 for LAN access

Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.

Network Architecture

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.