Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2804
Views
0
Helpful
10
Replies

Cisco RV345 DMZ configuration

julenGenelek
Level 1
Level 1

‎09-10-2018 03:29 AM - edited ‎09-10-2018 06:06 AM

Hi,

 

We have this network configuration in RV345:

 

WAN1: 

ip: 192.168.1.11 /24

 

VLAN1

ip: 192.168.3.11 /24

 

Hardware DMZ 

Enabled (port 16 to DMZ)

ip: 192.168.2.11

mask: 255.255.255.0

 

DMZ Host

Enabled

ip: 192.168.2.11

 

I'm trying to allow traffic from DMZ to Internet but I can't, ping to 8.8.8.8 not responding from a computer in DMZ with 192.168.2.100 ip.

 

The access rules (basics for test) i have configured:

 

DMZ to WAN1 - All traffic - Source: any - destination: any - Allowed

WAN1 to DMZ - All traffic - Source: any - destination: any - Allowed

 

But this configuration is not working.

 

What am I missing?

 

Thanks!

 

Julen.

 

PD: I attached configuration screenshots:

Access_Rules.pngFirewall-DMZHost.pngHardware_DMZ.pngVLAN_Settings.png.

 

1 person had this problem
Labels:
0 Helpful
10 Replies 10

omz
VIP Alumni
VIP Alumni

‎09-10-2018 03:52 AM

DMZ Host

Enabled

ip: 192.168.2.11

 

Can you ping 8.8.8.8 from this host?

 

https://community.cisco.com/t5/small-business-support-documents/configure-dmz-host-on-rv320-and-rv325-vpn-router-series/ta-p/3171190

0 Helpful

julenGenelek
Level 1
Level 1
In response to omz

‎09-10-2018 04:01 AM - edited ‎09-10-2018 07:11 AM

 

Yes, from the host 192.168.2.11 (this host is RV345 firewall on the DMZ port) i can ping 8.8.8.8 but from a computer behind firewall DMZ I cannot.

 

Thanks for reply.

0 Helpful

julenGenelek
Level 1
Level 1
In response to julenGenelek

‎09-10-2018 06:06 AM - edited ‎09-10-2018 06:06 AM


I attached configuration screenshots.

0 Helpful

julenGenelek
Level 1
Level 1

‎09-10-2018 07:10 AM

I've seen they are a lot of issues about DMZ port in Cisco RV series without solve........

 

I think he cisco support should say something...

0 Helpful

julenGenelek
Level 1
Level 1

‎09-10-2018 02:55 PM

Any idea?

0 Helpful

julenGenelek
Level 1
Level 1

‎09-11-2018 03:22 AM

I need help... Thanks!

0 Helpful

omz
VIP Alumni
VIP Alumni
In response to julenGenelek

‎09-11-2018 07:37 AM - edited ‎09-11-2018 07:37 AM

Sorry not familiar with RV345s. Just try to help from guides.

Maybe try - 

3. Select Subnet to identify a subnetwork for DMZ services and enter the DMZ IP Address and Subnet Mask.
4. Select Range (DMZ & WAN within the same subnet) and enter the IP range
 
The host in DMZ host is working as expected, right? 
Maybe add the range from the DMZ subnet as well. 
0 Helpful

julenGenelek
Level 1
Level 1
In response to omz

‎09-12-2018 04:16 AM

I think the issue is in the Firmware because I've disabled the Hardware DMZ and created an VLAN with subnet 192.168.2.11/24 in the 16 port and limited the acces with rules like DMZ and it works. For that reason I think the problem is in the Firmwar and how it manage the DMZ port, I think there is a problem with the NAT o Routing between LAN/WAN ports and the DMZ port.

0 Helpful

omz
VIP Alumni
VIP Alumni
In response to julenGenelek

‎09-12-2018 04:35 AM

If you have valid Cisco contract, please raise a case with Cisco TAC and they will be able to confirm.

Sorry, could not be more helpful.


0 Helpful

tokens
Level 1
Level 1

‎02-03-2019 01:31 PM

Hi there,

Any update on this, please?

 

I have the same problem setting up RV345 Hardware DMZ.

 

Thank you in advance.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents