Join Log in
Score:0
jrkuan avatar Server

I want to set up a DMZ on a pfSense virtual appliance but with LAN and WAN having the same subnet

cn flag
jrkuan

173.16.0.0 (Intranet/LAN) === (DMZ/10.10.10.1) === 173.16.0.0 (Extranet/WAN)

I have an intranet (173.16.0.0) on the LAN interface and extranet (also 173.16.0.0) on the WAN interface of a pfSense virtual appliance.

Only the extranet has access to the internet. I want to configure a third interface to host a DMZ that can access both the intranet and extranet. This DMZ will contain a WSUS server and linux repository mirror to fetch packages from the extranet for deploying to hosts on the intranet, without exposing the hosts to the internet.

The problem is that both the intranet and extranet are using the same subnet (173.16.0.0), so there is a problem of routing from the DMZ to the interface I want.

Static routes don't resolve this confusion, and cannot change the subnets of either network.

Any guidance is greatly appreciated.

43
0 + 0
dmz
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.