User Tools

Site Tools


Table of Contents

opnSense DMZ

NOT for this, but saving link. This if for multi-wan (multiple outside IP's with failover)

This is a work in progress. I'm updating it as I do the work.

Target Appliance

The goal here is to create a DMZ which will allow multiple public IP's to access internal machines via 1:1 NAT. We will build separate rule sets for groups of machines, ie public web servers, public mail servers, etc…, controlling which ports are available for each separate type (you don't need port 25 open on a web server, for example).

  1. DMZ
    1. Enable Interface
    2. Prevent Removal
    3. Static IP
    4. IPV4 Address
    5. auto-detect IPv4 upstream gateway
  2. dhcp
    1. enable
    2. set range
other/networking/opnsense/dmz.txt · Last modified: 2021/04/03 02:04 by rodolico