RAQCOP = IPCop + Cobalt Raq, Cobalt Raq Firewall Applicance Software, Velociraptor Software Upgrade.
      Home      How To Install      Rom Flash      Download Area      Support Forum     
DMZ pinholes - am i doing it wrong?
raqcop.com
May 19, 2012, 01:24:55 PM *
Welcome, Guest. Please login or register.

Login with username, password and session length
News: SMF - Just Installed!
 
   Home   Help Search Login Register  
Pages: [1]
« previous next »
  Print  
Author Topic: DMZ pinholes - am i doing it wrong?  (Read 986 times)
karldonteljames
Newbie
*
Posts: 13


View Profile
« on: March 15, 2011, 02:16:21 PM »
Hey Guys,
   so i've been using IPcop for a while now and it works brilliantly. so much was i impressed by the RAQ i have recently purchased two more (these are standard raq4's with one nic) which i am going to use for education and testing. anyway my network looks like this:

RED: (DYNAMIC VIA ISP DHCP)
GREEN: 192.168.10.254 (interface for ipcop) DHCP RUNNING 192.168.10.50-70 with 255.255.255.0 subnet.
ORANGE: 192.168.12.254 (interface for IPcop) static address are as follows:
RAQ4: 192.168.12.1
Camera1: 192.168.12.2
Camera2: 192.168.12.3

I have a blue interface but thats not needed here.

i have setup all port 80 traffic to direct to 192.168.12.1 and there is a reverse proxy whihc deals with the headers here so

cam1.mydomain.dyndns.org directs to cam1
cam2.mydomain.dyndns.org directs to cam2

i have a device on the green network which i want to receive port 80 traffic on the green network AFTER it has been reverse proxied. so i added

test.mydomain.dyndns.org

and setup a DMZ pinhole from the orange network 192.168.12.1 to the green network 192.168.10.248 (staic address) i have also added a rule on BOT. For some reason the traffic is not being passed through to the green zone. i just get a timeout message saying something like there was no reply.  i'm thinking it may be due to the subnet of the 10.248 being set to 255.0 and refusing to listed to 12.1 but not sure.

Does anyone have any ideas?

Cheers.

Karl
Logged
Davesworld
Administrator
Sr. Member
*****
Posts: 296


I'm the same Dave who patches and compiles raqcop.


View Profile WWW
« Reply #1 on: March 18, 2011, 01:30:07 AM »
I have not used DMZ pinholes myself but I don't want you to think you're being ignored here. In this regard as with all networking in Raqcop, it is pure IPCop and any information you find anywhere on IPCop DMZ pinholes (provided the author knows what they are doing) applies here as well.
Logged
Main Daily Firewall: Cobalt Raq 4i modded to use a low voltage K6-III 1.8v 256k cache 500mhz clocked at 550mhz, VFD display. Raqcop 1.4.21
 
Others: One additional 4i for development left stock and two Symantec Velociraptor 500's with the 550mhz low voltage processor mod. Raq550, Two Raq XTR units
Pages: [1]
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.4 | SMF © 2006-2007, Simple Machines LLC Valid XHTML 1.0! Valid CSS!

RaqCop / IPCop Software is Provided as is. No Warranty is Expressed Nor Implied. Use it at Your Own Risk!


Web Hosting, Download Hosting, and Web Design Provided by Tech Ninjas.