SRX Services Gateway
Reply
New User
hosters
Posts: 2
Registered: ‎01-16-2010
0

Want to use webserver with public ip adres in trust zone.

Hello,

 

I have a webserver in the trust zone with a public ip address : 213.222.12.42/32

On the untrust side i have the ip 213.222.12.34/27

 

It is'nt possible to change the ip address to a internal adres like 192.168.x.x

 

How can help me ?

Distinguished Expert
Raheel
Posts: 414
Registered: ‎06-18-2008
0

Re: Want to use webserver with public ip adres in trust zone.

please read following kb for better understanding, covers everything.

 

http://kb.juniper.net/KB15758

 

thanks

raheel

Follow me on Twitter @anwar_raheel

--
If this post was helpful, please mark this post as an "Accepted Solution".
Kudos are always appreciated!
New User
hosters
Posts: 2
Registered: ‎01-16-2010
0

Re: Want to use webserver with public ip address in trust zone.

Every documents goes about a public ip to a internal ip.

What i looking for is using a public ip in the trust.

Trusted Contributor
gavint
Posts: 37
Registered: ‎06-08-2009
0

Re: Want to use webserver with public ip address in trust zone.

Hi,

 

You can run public IPs on multiple zones (although it would be more usual to use a new DMZ zone than use public IPs in the trust zone) but you can't have overlapping IP ranges between zones.

 

If you want to run public IPs on both sides of the firewall you will need two separate subnets, you can't just take addresses from one subnet to use in another zone. Ask your ISP if you can split your /27 into two /28s or get another range.

 

HTH.

 

Gavin

JNCIE-SEC #47, JNCIS-ENT, JNCIS-SA, JNCIS-AC, JNCIA-IDP, JNCIA-FWV
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.