Author Topic: Firewall behind NAT router bug (Read 2218 times)

check-ict · « **on:** August 09, 2010, 10:55:31 am »

Hello,

I have a Draytek router for the internet. eBox is sitting inside my LAN. There is only 1 interface, wich is internal (so WAN is not selected).

I've set up my Draytek to put eBox as DMZ. All traffic is send to the eBox. I noticed that all my services/firewall rules are available from external networks, like the eBox remote admin page (port 443). In eBox, there is a rule specified that only internal network can access the remote admin page (port 443). I think this is because my router forwards to the eBox, looking like it's comming from the internal network, and exposing it to the whole world.

sixstone · « **Reply #1 on:** August 11, 2010, 09:47:41 am »

Hi there,

Your thoughts are right. You must modify Filtering rules for internal networks to eBox to manage who may access to the network services available in eBox.

Best,

Cookies usage

Author Topic: Firewall behind NAT router bug (Read 2218 times)

check-ict

Firewall behind NAT router bug

sixstone

Re: Firewall behind NAT router bug