07-19-2019 02:15 AM
Hello,
We have a server on the DMZ zone and another server in the other DMZ site.
We need to allow traffics between the two DMZ zones with the MPLS connection.
I don’t know how can I put this configuration on my PA firewall or maybe I should contact my MPLS provider to do this act on the MPLS router?
I will appreciate your help or suggestion to solve this issue.
Best Regards,
07-19-2019 05:14 AM
hi @ra7oub4
are both DMZ zones 'local' to you, or is there an MPLS in between (2 physical locations)
if both are local and the connection needs to go through the MPLS router (ie. you do not want to route inside the firewall), you will need to set up 2 separate VirtualRouters that each handle one single DMZ, and have a forwarding route for the other DMZ to the external MPLS router
if both servers are on a different location, your MPLS provider may need to add routing to acommodate for DMZ subnets to get routed over the MPLS, OR you could get creative with source/destination NAT
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
