I can´t configure my firewall with Zentyal

[carlosluna]

Hello, my name is Cristopher and I am trying to configure my firewall in my Enterprise.
I would like to learm more about interfaces configuration,
well. one of them is
eth0 --> external interface and linking with the router(WAN) ip number is : 192.168.5.30
eth1 --> brig
brig --> internal interface (LAN), ip number is : 192.168.5.29
----------------------------------------------------------
Gateway -- > 192.168.5.1
-----------------------------------------------------------
but I cant connect  a user's pc  to zentayl or zentayl with user's pc. but I can connect to internet from  zyntal .
-------------------------------------------
I like this software, it's great but I need to help.

[christian]

Hi Christopher,

What you want to achieve doesn't work.
If you want one external and one internal interface (which is the right design) then both have to be on different subnet.
you do not tell what netmask is, so I assume it's /24 (or 255.255.255.0) which makes both external and internal belonging to same subnet. Very wrong
You should have:
WAN router (192.168.5.1) <--> (192.168.5.30) external Zentyal <--> Zentyal (localhost) <--> internal Zentyal (192.168.4.1 for instance) <--> switch <--> (192.168.4.24) one PC here

Default gateway for Zentyal is 192.168.5.1
Default gateway for PCs is 192.168.4.1

Does it help?

[jsalamero]

Hi both,

you can make this setup using bridged mode, but you cannot give an IP address in the same subnetwork to two different interfaces because you mess up routes. Create a bridge with eth0 and eth1, give the brX the IP address, eth0 as external where you will connect the router, eth1 internal IIRC.

Cheers,

[christian]

What would the bridged mode bring here?