<div>
The Comcast SMC modem, from what I gather, can, and I think by default does, simply pass through your IPs, i.e, should be in bridge mode (so to speak).<br />
<br />
This means if you assign an outward facing wan port one of your statics, then it will be on the net.<br />
<br />
So that wan-connected device's firewall can then be configured however you wish, i.e., normally, whether its providing a dmz and a lan, or whathaveyou.<br />
<br />
x5<br />

</div>


<div>
Look at Transparent Firewall for the DMZ leg<br />
<br />

<blockquote>
The Transparent Cisco IOS Firewall feature allows users to &quot;drop&quot; a Cisco IOS Firewall in front of their existing network without changing the statically defined IP addresses of their network-connected devices. Thus, users can allow selected devices from a subnet to traverse the firewall while access to other devices on the same subnet is denied
</blockquote>
.<br />
<a href="http://www.cisco.com/en/US/docs/ios/12_3t/12_3t7/feature/guide/gt_trans.html" rel="ugc">http://www.cisco.com/en/US/docs/ios/12_3t/12_3t7/feature/guide/gt_trans.html</a><br />
<br />
&nbsp;What kind of firewall/router do you have?
</div>


<div>
dcj21, I was reading on <a href="http://www.cisco.com" rel="ugc">www.cisco.com</a>&nbsp;about the Transparent Cisco IOS Firewall but unfortunately this solution doesn't fit my needs since I can not apply Firewall rules at layer 3 &nbsp;on the ports that Bridged Virtual Interface (BVI) is configured.<br />
This is what you can read in the site: &quot;&quot;&quot;&quot;&quot;Because the Layer 2 firewall intercepts packets at Layer 2 and is &quot;transparent&quot; to the existing network, Layer 3 firewall limitations are not applicable.&quot;&quot;&quot;&quot;&quot;&quot;<br />
<br />
Thanks any way for your help, but I am in the same point that I was at the beginning. <br />
<br />
klodefactor, I don't want to do NAT because I want each &nbsp;server to have its own static IP address on the DMZ, and another thing is that I don't want to compromise the router's resources in the NAT process.<br />
<br />
Tahnk you all any way, if any other solution arise just let me know.
</div>


<div>
<div class="content wysiwyg-content">
Today I received from Comcast 5 statics IPs as I requested them. I bought a router Cisco and I plan to set up a DMZ for my servers, but Comcast assigned the Default Gateway IP to their modem and now I am not able to create a DMZ and protect the traffic going to my servers. <br />
<br />
I asked them to set up a subnet between the modem and my router with privates IP addresses so I would be able to assign the Default Gateway IP to the router's interface that face the DMZ, but they told me that they have to leave the Default Gateway IP address on the modem.<br />
<br />
Now I am stock, because I don't know how can create a DMZ and filter the traffic as it passes throughout my router. One of the things that I am trying to avoid is to put the router to do Nat. <br />
<br />
I really appreciate any help. 
</div>
</div>


Today I received from Comcast 5 statics IPs as I requested them. I bought a router Cisco and I plan to set up a DMZ for my servers, but Comcast assigned the Default Gateway IP to their modem and now I am not able to create a DMZ and protect the traffic going to my servers. 

I asked them to set up a subnet between the modem and my router with privates IP addresses so I would be able to assign the Default Gateway IP to the router's interface that face the DMZ, but they told me that they have to leave the Default Gateway IP address on the modem.

Now I am stock, because I don't know how can create a DMZ and filter the traffic as it passes throughout my router. One of the things that I am trying to avoid is to put the router to do Nat. 

I really appreciate any help. 

Configuring 5 statics IPs

Networking is the process of connecting computing devices, peripherals and terminals together through a system that uses wiring, cabling or radio waves that enable their users to communicate, share information and interact over distances. Often associated are issues regarding operating systems, hardware and equipment, cloud and virtual networking, protocols, architecture, storage and management.

Networking

Network security consists of the policies adopted to prevent and monitor authorized access, misuse, modification, or denial of a computer network and network-accessible resources. Network security involves the authorization of access to data in a network, and covers a variety of computer networks; conducting transactions and communications among businesses, government agencies and individuals. Networks can be private, such as within a company, and others which might be open to public access.

Network Security

Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.