8. Use the DMZ Configuration page to configure the DMZ networks.
NOTE: Up to 4 DMZ networks can be configured on the security appliance. You must configure at least one DMZ network to finish the DMZ wizard.
9. Click Add to create a DMZ network.
Other options: To edit an entry, click the Edit (pencil) icon. To delete an entry, click the Delete (x) icon.
10. In the Basic Setting tab, enter the following information:
• Name: Enter the name for the DMZ.
• IP: Enter the subnet IP address for the DMZ.
• Netmask: Enter the subnet mask for the DMZ.
• Spanning Tree: Check this box to enable the Spanning Tree feature to determine if there are loops in the network topology.
• Port: Choose a configurable port from the Port list and add it to the Member list. The selected configurable port is set as a DMZ port in the Access mode.
• Zone: Choose the default DMZ zone or a custom DMZ zone to which the DMZ is mapped.
11. In the DHCP Pool Settings tab, choose the DHCP mode from the DHCP Mode drop-down list.
• Disable: Choose this option if the computers on the DMZ are configured with static IP addresses or are configured to use another DHCP server.
• DHCP Server: Allows the security appliance to act as a DHCP server and assigns IP addresses to all devices that are connected to the DMZ. Any new DHCP client joining the DMZ is assigned an IP address of the DHCP pool.
• DHCP Relay: Allows the security appliance to use a DHCP Relay. If you choose DHCP Relay, enter the IP address of the remote DHCP server in the Relay IP field.
12. If you choose DHCP Server as the DHCP mode, enter the following information:
• Start IP: Enter the starting IP address of the DHCP pool.
• End IP: Enter the ending IP address of the DHCP pool.
NOTE: The Start IP address and End IP address should be in the same subnet with the DMZ IP address.
• Lease Time: Enter the maximum connection time that a dynamic IP address is “leased” to a network user. When the time elapses, the user is automatically assigned a new dynamic IP address.
• DNS1: Enter the IP address of the primary DNS server.
• DNS2: Optionally, enter the IP address of a secondary DNS server.
• WINS1: Optionally, enter the IP address of the primary WINS server.
• WINS2: Optionally, enter the IP address of a secondary WINS server.
• Domain Name: Optionally, enter the domain name for the DMZ.
• Default Gateway: Enter the IP address of default gateway.