FB III 700 Configuration

[f652050]

We currently have a dsl router provideing internet,vpn and NAT services, behind the router is a FBIII 700.

The dsl router has a real ip and the eth0 interface a 10.10.x.1 address. The 10.10.x.1 is connected to the external interface of the FBIII 700 and the fw is set in dropin mode.

We have set the FBIII 700 trusted,external and optional to. 10.10.x.x with a default gw of 10.10.x.1

But we can't access the internet is there anything else we are suppose to do?

thanks in advance

 

[stiles123]

Problem with this config is that the 10.X addresses are set to auto-block by default. You'd probably be better off configuring the Firebox in routed mode and setting the DSL router to forward all internal traffic to the Firebox for handling. You'd need to remove the 10.X network from the list of blocked sites. However, this makes your Firebox a little less secure.

Drop-in mode is harder work for the firewall especially as it has to handle all the ARP request from your entire network now.