dmz tunneled over WAN

Unanswered Question
Feb 10th, 2009

Hi all, if I have a firewall on my central site, but want to host the DMZ on another site, would it be possible to get this across a wan link etc? would the only option be to bridge?



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
ccannon88567 Tue, 02/10/2009 - 08:27

If you did it this way you would be best with a LES link to a DMZ switch on the other site. It would be bridged, but you would need your Gateway out to the internet or the untrusted Network on the Remote site also.

ccannon88567 Tue, 02/10/2009 - 08:46


You could actually do this with the Gateway on the same site as the firewall. On the outside interface of the firewall you could have a switch and then bridge to another switch on the remote site. Total of 2 switches in the DMZ.

If it's not possible to bridge between sites then you would need routed links and you would just have to NAT to remote site.

I am presuming you have servers on remote site which you cannot move to your firewall DMZ?


This Discussion