4.7.3. Transparent Mode Scenarios
•
IP Address: 10.0.0.2
•
Network: 10.0.0.0/24
•
Transparent Mode: Enable
6.
Click OK
Configure the rules:
1.
Go to Rules > IP Rules > Add > IPRule
2.
Now enter:
•
Name: HTTPAllow
•
Action: Allow
•
Service: http
•
Source Interface: lan
•
Destination Interface: any
•
Source Network: 10.0.0.0/24
•
Destination Network: all-nets (0.0.0.0/0)
3.
Click OK
Scenario 2
Here the D-Link Firewall in Transparent Mode separates server resources from an internal network
by connecting them to a separate interface without the need for different address ranges.
All hosts connected to LAN and DMZ (the lan and dmz interfaces) share the 10.0.0.0/24 address
space. As this is configured using Transparent Mode any IP address can be used for the servers, and
there is no need for the hosts on the internal network to know if a resource is on the same network or
placed on the DMZ. The hosts on the internal network are allowed to communicate with an HTTP
server on DMZ while the HTTP server on the DMZ can be reached from the Internet. The D-Link
Firewall is transparent between the DMZ and LAN but traffic is still controlled by the IP rule set.
Figure 4.15. Transparent Mode Scenario 2
174
Chapter 4. Routing