dmz bridge mode

**narrdarr** · 06-27-2013, 11:30 AM

hello,
im new to untangle. i had had issues with zentyal so figured i would try something new.
i just need alittle help with my setup for my home.

i have 3 nics.
eth0 external static to internet
eth1 internal static for AP
eth2 bridge DMZ- external for ps3

if i'm understanding this correct the dmz bridge will avoid any nat. that is way i want to use it for my ps3.
i am having trouble connecting to the internet though eth2(DMZ)
so i'm guessing its and ipaddress issue..?
what ip address do i use for the ps3? if i need to set one how do i do this?

**jcoffin** · 06-27-2013, 11:58 AM

If the PS3 is on the DMZ bridged to the External, your PS3 will need to have an IP address from the device upstream from the Untangle (ISP or ISP modem).

Another configuration is to have the PS3 on Internal and bypass the IP address of the PS3 so it's not filtered by the Untangle. Bypass rules are in Config -> Networking -> Advanced -> Bypass Rules. This is how I have my PS3 configured.

**dmorris** · 06-27-2013, 12:03 PM

Theres really no reason to give your PS3 a public IP, IMO.
You still need to bypass traffic to/from it whether its on the DMZ with a public IP or one internal with a private IP.

**narrdarr** · 06-27-2013, 12:31 PM

ok ty.
i tried to use the ip address that is upsteam, but it failed to connect.
so i think the second option would be best,do i need to change the eth2 from dmz to internal? if so how?
i left it as dmz made it static, set the an ip address, made the bypass rules. i am able to connect now.
but i still have nat 2 instead of nat 1..?
the other issue is where are the DHCP setting for the DMZ? i have no idea what the range is. i just happen to make a lucky guess when i chose the ip address for the ps3.
ty again for the help.

**narrdarr** · 06-27-2013, 12:34 PM

sry dmorris i was replying when you posted, i believe you answer. "do i need to change the eth2 from dmz to internal? if so how?"

**dmorris** · 06-27-2013, 12:35 PM

You can't use the same IP address another device is using.

You could bridge your DMZ to the internal interface, effectively just making it another internal interface.
Or you could not use the DMZ at all and just plug your PS3 into whatever you plug your other devices into (presumably a switch on the Internal interface)

**narrdarr** · 06-27-2013, 12:48 PM

i'll try the bridge. 1 sec

**narrdarr** · 06-27-2013, 12:54 PM

so if bridge dmz into the internal what's the ip address of the dmz?

wouldn't it be easier, just use the dmz with a different ip address.
example:
eth1 internal 192.168.1.0 dhcp range whatever
eth2 dmz 192.168.2.0 dhcp range whatever

then set a bypass rule for the eth2(dmz) interface begins only the ps3 is connected to it?
i am able to connect this way.
just need to fix the nat issue.

**jcoffin** · 06-27-2013, 01:49 PM

If an interface is bridged, it does not need an IP address. Bridging is similar to a network switch, the switch NICs don't need IP addresses.

You need to bypass the IP of the PS3, not the interface.

**narrdarr** · 06-27-2013, 04:39 PM

yea i got connection through the bridge. ty guys!

however i still can't get the bypass rule set correct to change the ps3 from nat 2 to nat 1.
so i guess, i'm asking what rule(s) should i be setting for the ip address of the ps3 to make this happen?

Thread: dmz bridge mode

LinkBack

Thread Tools

dmz bridge mode

Tags for this Thread

Posting Permissions