DMZ design assistance

Unanswered Question
Jan 26th, 2010

I'm in a situation where I need to put a blade server that connects to the core switch in the DMZ.  I can't physically connect the blade server on the isolated DMZ switch.  The reason being is that some of the blades on the blade server chassis need to be accessed from the inside network only.  What is the best way to connect to the blade server to the dmz and the inside network?  Thanks

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Kureli Sankar Tue, 01/26/2010 - 20:13

You just need to provide translation for the inside host that will try to reach the blade server on the dmz. Let us say the inside host's ip is 10.10.10.1 and it is trying to reach the dmz blade server. Irresepective of the blade server's IP address if you have the following static

static (inisde,dmz) 10.10.10.1 10.10.10.1

it should work fine.

-KS

jidesai01 Fri, 01/29/2010 - 11:02

The Blade server is on the inside (secure side) of the network.  We want to utilize the blade server chassis to have a mix of servers.  We want some servers on the blade chassis for internal use and some for external (to our network) use.  What is the most secure way to make some servers on the blade server chassis exposed to the outside world?

Actions

This Discussion