|
此文章由 zhongbingo 原创或转贴,不代表本站立场和观点,版权归 oursteps.com.au 和作者 zhongbingo 所有!转贴必须注明作者、出处和本声明,并保持内容完整
原帖由 夜游神 于 2009-11-11 16:17 发表 
Can't remove inside nat for web server as client wants it work like this way
So I need to add a static route to resolve it right?
maybe not working, traffic from vpn termial at inside interface, then they need route to destination, for outside webserve, it just route to outside interface, for DMZ , route to DMZ interface, for inside webserver ip address, if you route to DMZ interface, DMZ will think it is destination to internal ip address, then route back to inside interface.
or just change internal DNS, don't point to inside ip , point outside ip address of webserver.
anyways, u can't always fullfill customer requirement, also KISS solution always best solution |
|