Topic: Networkproblem with another gateway

[lexi]

No i got static ip from our provider

There is
1 Router 82.207.167.177/29 + 192.168.1.0/24

clients standard gateway on the router

the sme server (7.0a) should get a public ip and one private.
I switched into server/gatewaymode.
then access on the server doesn´t run (if i assign a other private subnet
without changing it on the client subnet public access is ok)

Routing prob?
I think the data route wrong:
Client 192.168.1.0/24) -> Router 82.207.167.177/29   -> SME 82.207.167.177/29
Answer: SME 82.207.167.177/29   -> Client on private interface (192.168.1.0/24)

How i can i disable the gateway function on the sme?
Aim is to
reach the sme for the typical local services (smb) via 192.168.1.0/24.
reach the sme via public ip adress
and leave the router for private net too.

Who hav an idea?

[gordonr]

How i can i disable the gateway function on the sme?
Aim is to
reach the sme for the typical local services (smb) via 192.168.1.0/24.
reach the sme via public ip adress
and leave the router for private net too.

I don't know why you are trying to do what you are proposing, and I think it is likely to be insecure.

The solution is to have the SME Server as a gateway and put your clients on the internal network behind it.

[electroman00]

lexi


 SME server in Server Only Mode does not deploy the router functions.

SME server in Gateway Mode does deploy the router functions.

Most routers will provide two basic network types;

Router (Lan Zone) deploys a DHCP Server using NAT as it's IP traversing mechanism.

Router (DMZ Zone) without DHCP Server and thus no NAT as it's IP traversing mechanism.
IP address will need be distinctly assigned within the DMZ Zone.

Router (Lan Zone) used with SME server in Server Only Mode will work however one must be very concerned with
the security effects imposed to the LAN with this design.

Router (Lan Zone) used with SME server in Gateway Mode may very well impose a DOUBLE NAT issue within that
design and will in most cases not provide connectivity.

Router (DMZ Zone) Can be used to provide connectivity for SME Server
in either Server Only Mode or Gateway Mode while maintaining (Lan Zone)
full security protection.

SME server IP address will need be distinctly assigned within the DMZ Zone.
Necessary Port Forwards manually setup within router to the (DMZ Zone).
Manual entry of DNS IP address into SME servers.

Connection to your router (DMZ Zone) looks like what your after.

HTH