ZyXEL Communications NBG410W3G Series User Manual
NBG410W3G Series User’s Guide
65
C
H A P T E R
4
Tutorials
This section describes how to do the following.
1 Set up a DMZ (De-Militarized Zone).
2 Use an H.323 VoIP phone on your LAN.
3 Use NAT (Network Address Translation) with multiple public IP addresses.
4 Allow multiple game players to connect to the same server.
2 Use an H.323 VoIP phone on your LAN.
3 Use NAT (Network Address Translation) with multiple public IP addresses.
4 Allow multiple game players to connect to the same server.
4.1 DMZ Overview
The DMZ is a separate network for devices that provide services to users on the Internet.
Devices such as a web or e-mail server are more prone to security threats as they are more
visible from the Internet and more frequently accessed than devices on your LAN. By placing
such devices on a DMZ, you can better restrict access to the devices on your LAN.
The diagram shows servers on the DMZ which are open to public access but protected by the
ZyXEL Device’s firewall. Devices which require greater security are located on the LAN.
Devices such as a web or e-mail server are more prone to security threats as they are more
visible from the Internet and more frequently accessed than devices on your LAN. By placing
such devices on a DMZ, you can better restrict access to the devices on your LAN.
The diagram shows servers on the DMZ which are open to public access but protected by the
ZyXEL Device’s firewall. Devices which require greater security are located on the LAN.
Figure 18 DMZ Overview
In this situation a file server is located in the DMZ. The file server is available for public
access from the Internet and also from computers located on the LAN.
You can use either public or private IP addresses for your DMZ, however the DMZ must be on
a different subnet or network from the LAN.
access from the Internet and also from computers located on the LAN.
You can use either public or private IP addresses for your DMZ, however the DMZ must be on
a different subnet or network from the LAN.
Internet
DMZ
LAN