Hi,
I'm trying to setup a basic DMZ for 1 PC that we need on the network, but not on 'our' network, so to speak (it's another companies laptop, and we don't know if it has viruses/spyware etc).
We run an internal ip of 192.168.0.0/24, and we have an ADSL router modem, with 1 ethernet port on the back, (ip address 192.168.0.1), this is connected to our switch, and everyone in the office uses it as their default gateway to connect out through. Now I need to allow a PC, that we need to keep off our network, access to the internet.
The IP address of this PC is 10.0.0.10/8, I've connected it to the untrust port on a netscreen 5xp, and configured that port with the ip of 10.0.0.1. Then I've connected the netscreen trust port to the office switch, and added an ip address of 192.168.0.2. Now I need to be able to get the quarantined laptop to connect out through the netscreen, through the ADSL modem.
You can configure routing through the netscreen, but I'm unsure of the exact configuration, should the ports use NAT or routing? How do I configure the routing table?
Any help much appreciated
Ben