08-24-2010 08:42 AM
I've connected a firewall to a linksys BEFSR41 router.
I put the BEF on a separate subnet
wan : static 192.168.1.2 ( on same subnet as firewall)
gateway: 192.168.1.1 ( firewall inside address )
dns : 192.168.1.1
NAT is enabled.
I have the ethernet cable from the firewall connected to the WAN port of the BEF
This works fine to go through the firewall to the internet ( which also has nat;-- I can't quite imagine how it works with the two nats. )
Problem: If i disable NAT on the BEF I can't get through to the internet .
The question: Isn't there a way to configure the BEF with NAT disabled and still get through to the internet?
I've tried various settings for the WAN on the BEF ( besides the one listed above) but haven't hit on the correct one.
Any suggestion would be appreciated.
Solved! Go to Solution.
08-24-2010 12:58 PM
08-24-2010 01:25 PM
Not sure but I presumed that since the 'enable' nat button is deselected for the LAN to LAN router configuration that it should be for the WAN to LAN router configuration.
Secondly , I presumed that if I try to reach this subnet from 'outside' the main firewall that the NAT on the BEF would prevent this. (I haven't actually tried to reach it yet from the 'outside')
Basically, I want the computers behind the BEF to be on different subnet and at least one of them reachable from the 'outside' via the main firewall.
thanks for your reply
08-24-2010 01:47 PM
08-24-2010 03:08 PM
Thank you for this thorough response. It explains a lot.
It seems I can accomplish what I want by following the instructions in #1 of your reply.
As for your question about "why computers" on different subnet the answer is basically I just wanted one subnet open to the 'outside' . Given my limited understanding of how this all works this may have no real benefit re security.