Hi everyone,
I have a web server on my internal network. I can open external access by
- creating a virtual IP to do port forwarding (EXT_IP:3000 --> INT_IP_SERVER:3000)
- create a policy to allow HTTP request from External Interface to Internal Interface
I now want to isolate my server through a DMZ interface. I guess the configuration part would be the same (replace Internal Interface with DMZ interface) but:
- Should I physically connect my web server to my DMZ interface (port 4 on my unit) ?
- If so I should do it through a switch to enable possible future servers added to the isolate network, no ?
Many thanks ;)
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.