Académique Documents
Professionnel Documents
Culture Documents
To Implement
using How
Bridge
Pair Transparent Subnet Gateway using Bridge Pair
Scenario
Cyberoam is deployed in Gateway Mode. As shown, the FTP Server (1.1.1.5) and Web Server
(1.1.1.6) are placed in the DMZ zone. While the LANs gateway is Cyberoam, the servers have their
gateway configured as the External Router (1.1.1.1) which is not subject to change. The servers are
to be published over the Internet using public IP addresses that belong to the same subnet as
External Router. This is achieved by implementing Cyberoam as a transparent subnet gateway in
which the WAN and DMZ zones are configured as a Bridge Pair.
Configuration
The entire configuration is to be done from Cyberoam Web Admin Console using profile having readwrite administrative rights for relevant feature(s).
You can configure a Bridge Pair by following the steps given below.
Step 1: Configure Bridge Pair
Go to Network > Interface > Interface and click Add Bridge-Pair to configure the bridge pair using
the parameters as shown in the table below.
Parameter
Value
Description
Name
WAN_DMZ
IP Address
1.1.1.2
Netmask
Interface 1
PortB
Zone 1
WAN
Interface 2
PortC
Zone 2
DMZ
8.8.8.8
4.2.2.2
Gateway Name
Default_GW
Gateway IP
1.1.1.1
Value
Description
Name
DMZ_WAN
Source Zone
DMZ
Destination Zone
WAN
Action
Accept
Apply NAT
MASQ
Value
Description
Name
WAN_DMZ
Source Zone
WAN
Destination Zone
DMZ
Action
Accept
Apply NAT
MASQ
Note:
-
It is recommended that you allow only the required traffic from WAN to DMZ to ensure
security.
Bridged Interfaces do not support few features as compared to Gateway Mode. For details,
refer to the article Which features are not supported in Bridged Interface/Port?