Internet <-->Modem (NAT)<-->(NAT ETH01) ZS (NAT ETH00)<--> FTP Server
As you can see, there is a lot of NAT…
My modem (provided by my ISP) is NATed (192.168.0.253)
ETH01 192.168.0.100 I had to make it NATed so my users could reach the Internet
ETH00 192.168.1.100 I had to make it NATed too, so my FTP server (192.168.1.70) could be reached from the internet…
To reach my FTP server from outside I forward the port 21 in the Modem to the ZS box and the I use the “Virtual Server” configuration:
ETH01 / ANY TCP 21 192.168.1.70:21
The problem with this configuration is that every request in the FTP server is logged as my ZS box IP (192.168.1.100)… for security purposes this is bad.. I can’t even use the autoban in the FTP server.
Do you have any ideas?, or a better way to reach my Server from outside.
The restrictions are that I cant put my server in the subnet 192.168.0.X it has to be in 192.168.1.X