I am having a problem with a loop in my network I believe. Basically I have a Watchguard firewall (which seems to work well), and computers on the internal net cannot see the external interface of my sme servers. Here is my setup in more detail:
hardware firewall has 3 interfaces: external (where it gets its net connection), internal (my NATted users) and optional (A kind of DMZ where the computers have public IPs but are still behind the firewall and can be limited if needed).
I internet coming into the external interface. one line out from optional to a switch with my sme servers on it. and one line out from the internal interface to my switch with users on it. Then my sme servers have their external interfaces plugged into that switch that is connected to the optional interface on the firewall, and their internal interfaces plugged into the switch with my users. All the users are setup to user the firewall as their gateway, so the only reason the sme servers are plugged into the local net is so we can drag and drop files to them.
Here is the problem however: I cannot ping (or reach in anyway) the external interface of the sme servers UNLESS the internal interface is unplugged from the internal network. I like to just have all my internal clients set to send mail via mail.zbe.com (which resolves to the sme server's external interface of course) but they cannot reach that if that sme server's internal interface is plugged in...
Any help?
0 Replies
495 Views