ah, i don't have any 1:1 nat entries, or static routes for this
firewall issue. so when the traffic hits the WAN interface perhaps
it's not always finding it's way to the voip box in the dmz?
i have added a 1:1 mapping as follows:
Interface External IP Internal IP Description
WAN 216.181.136.7/32 10.0.0.1/32 VoIP Box
where 10.0.0.1/32 is the ip of the DMZ interface.
should that be sufficient?
i can see why some of the traffic was not making it through since i
only had a rule to allow traffic from 216.181.136.7 but no port
forwarding, static routes or 1:1 nat entries.
thanks,
-phil
On Sep 4, 2008, at 7:21 AM, Paul Mansfield wrote:
BSD Wiz wrote:
please allow me to pose this question again. i am trying to allow all
traffic from a specific source ip into my DMZ(10.0.0.0/24) for my
VoIP
maybe I'm missing something, but the filter rule looks OK.
does that external IP have a route to your DMZ, or have you put in
a NAT
rule to map the external port on firewall to server(s) in the DMZ?
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]