TZ100 Dmz access from lan

[badmotorvision]

Ok, Were getting ready to redo our network.
Currently our email and webserver is hosted offsite.
I am going to purchase a mac mini with os x server for email and a plain vanilla win 2008 for webserver.
So the email / webserver will go on the dmz interface
and the internal users will be on the LAN interface
but How do the internal clients on the lan interface
communicate with the email server on the dmz? Surely it doesnt have to go all the way out to the internet and back again.

 

[joepc]

Your gateway on the workstation will point to the Sonicwall. This means all non LAN subnet traffic will get forwarded/routed to the Sonicwall. The Sonicwall then looks at the received traffic and determine where to send it. Since you created a DMZ interface on the Sonicwall, the Sonicwall knows to broadcast the traffic out the DMZ interface.

You also need to make sure that you properly configure your LAN/DMZ DMZ/LAN rules.

 

[SonicsRule]

You may find that it appears not to work when you type in the URL of the mail server mail.mydomain.com but does work if you use the private IP of the mail server in the DMZ.

This can be fixed if you add another NAT rule called a "loopback".

Searching for Sonicwall and Loopback should find you more than enough info know you now what to look for.