Real DMZ made easy

PeterUK

Will fix my ISP DHCP problem with my current real DMZ problem too
Big ask to solve my ISP problem with DHCP. — Zyxel Community

PeterUK

PeterUK

Also now with my web site to show Real DMZ in Network Layout Builder that can simulate network traffic sending

so here are so demo files to load at
https://bridgemode.base44.app/NetworkLayoutBuilder

So if Zyxel was to add this option it would cut my network in half! No not making that up half! This it something I really want.

So how it works and what to look for when you load the demo you have the ISP firewall and ISP switch where Other user on same subnet get one WAN IP like Firewall 1 which wants to do Real DMZ for there one WAN IP. So what is Real DMZ? Well its like IP pass through only much more useable that you can do normal NAT and pass the WAN IP per VLAN subnet per device. So firewall 1 on ports 5 and 6 on the DHCP server tab has the Real DMZ setup for the given MAC address so Server/Client 2 and Server/Client 3 get the WAN IP and a normal NAT DHCP IP range 192.168.0.0/24 and 192.168.1.0/24 for Server/Client 1 and Server/Client 4 on VLAN on Device selection link the the WAN port and then adds for ports 5 and 6 for VLAN info Real DMZ Virtual Interface which does proxy ARP so that Server/Client 2 and Server/Client 3 can ARP to a gateway and to a IP for the WAN subnet so if you try to connect to Other user on same subnet you can and they can connect to you. There is also a Virtual Server tab on firewall 1 port 1 so that Other user on same subnet can connect to you for like port 80.

on Server/Client # and Other user on same subnet port 1 you can do right click to do send packet to view and test this setup working

real DMZ.zip