Solved

how do i setup a webserver behind a netgear UTM9 firewall?

Posted on 2014-09-12
7
216 Views
Last Modified: 2014-09-29
I have a small network with a proprietary software program we use. The software company requires we setup a web server on our network for clients to access data. Our firewall is a Netgear UTM9. We have two public IP addresses. One extra for the web server.
How do I set up the web server in the UTM so people can access the web server? Unless I am not seeing it, I don't see a place for 1-1 NAT and if I set it up on the DMZ, the web server won't be able to talk to our main file server which is required for the software company.
Ideas?
0
Comment
Question by:TcAnthony
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 
LVL 5

Expert Comment

by:Sean Jackson
ID: 40319407
Wouldn't you start by allowing tcp to port 80 and 443 to that IP, and from the 'inside' allowing that IP any out on port 80 and 443?
0
 

Author Comment

by:TcAnthony
ID: 40320168
I'm just not sure how to show two public ips. One for my regular network and one for my web server.
Thanks for the reply.
0
 

Author Comment

by:TcAnthony
ID: 40323392
Any help?
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 
LVL 5

Expert Comment

by:Sean Jackson
ID: 40323479
You want your internal network public facing?  This is a bad idea.  

It's possible we're not speaking of the same thing at this point.
0
 

Author Comment

by:TcAnthony
ID: 40323505
Maybe. Thanks for your answer. Unfortunately, we have a proprietary program that the company requires an internal server to be used as a web server. We have built it as such (not our file server) to be used by this program and certain users as a web server. It does need to be seen from the outside.

I need to know how to configure the firewall to allow the webserver ip address to the inside without interfering with the traffic that is typically allowed (RDP, VPN, ETC.)
0
 
LVL 5

Accepted Solution

by:
Sean Jackson earned 500 total points
ID: 40323515
Oh, you allow TCP port 80, 443 to the IP, and then the same back out again.  TCP and ports will keep it separate from RDP, VPN, and other protocols, which also use their own ports.
0
 

Author Comment

by:TcAnthony
ID: 40350553
I have created a DMZ.
Thanks.
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Most MSPs worth their salt are already offering cybersecurity to their customers. But cybersecurity as a service is wide encompassing and can mean many things.  So where are MSPs falling in this spectrum?
Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question