Chapter 22 Virtual Servers
ZyWALL Series CLI Reference Guide
195
The following command shows information about all the virtual servers in the Zyxel Device.
22.2.2 Tutorial - How to Allow Public Access to a Server
This is an example of making an HTTP (web) server in the DMZ zone accessible from the Internet (the
WAN zone). You will use a public IP address of 1.1.1.2 on the ge2 (or wan1 on some models) interface
and map it to the HTTP server’s private IP address of 192.168.3.7.
Figure 20 Public Server Example Network Topology
Follow the following steps for the setting.
1 Configure Address object
Create two address objects. One is named DMZ_HTTP for the HTTP server’s private IP address of
192.168.3.7. The other one is named ge2_HTTP for the ge2 (wan1) public IP address of 1.1.1.2.
2 Configure NAT
You need a NAT rule to send HTTP traffic coming to IP address 1.1.1.2 on ge2 (wan1) to the HTTP server’s
private IP address of 192.168.3.7. Use the following settings:
• This NAT rule is for any HTTP traffic coming in on ge2 (wan1) to IP address 1.1.1.2.
Router(config)# show ip virtual-server
virtual server: WAN-LAN_H323
Index: 1
active: yes
interface: wan1
NAT-loopback active: yes
NAT 1-1: no
original IP: 10.0.0.8
mapped IP: 192.168.1.56
mapping type: port
protocol type: tcp
original service:
mapped service:
original start port: 1720
original end port:
mapped start port: 1720
mapped end port:
Router(config)#
Router# configure terminal
Router(config)# address-object DMZ_HTTP 192.168.3.7
Router(config)# address-object ge2_HTTP 1.1.1.2
Router(config)#
To Next Page
Loading...
