Good Morning
I want to install a Wingate as a proxy server in a DMZ, I have a Router/Firewall control my internal LAN so it will NAT internal IP's to one public IP, how many users license i will need on wingate, I have about 40 users will serve the internet each have his username and password.
also in this scenario do I have to map internal IP's throw NAT to a specific public IP:Port or I dont need to do that.
wingate as proxy in DMZ
Moderator: Qbik Staff
2 posts
• Page 1 of 1
wingate as proxy in DMZ
by Hatem Kotb » Jun 07 12 7:35 am
- Hatem Kotb
- Posts: 1
- Joined: Jun 07 12 7:26 am
Re: wingate as proxy in DMZ
by adrien » Jun 07 12 10:34 am
Hi
If all your internal users appear to WinGate from 1 IP, then by default they will all be deemed to be the same user.
If you want to use individual user accounts / auth, then you can mark the IP address as being multi-user. to do this, in credential rules, add a rule for that IP, and select "don't allow credentials established by a session to be used by other sessions". This means WinGate will keep individual credentials per connection.
In this case, you'd need a license for each user, and an enterprise license, since this feature requires an enterprise license.
Otherwise, if you don't keep individual credentials, you'd only need 1 user, and that's free.
Is there any option to put WinGate on the boundary? Then you could use individual auth (since WInGate would see each users's IP) without requiring the enterprise level of license.
Regards
Adrien
If all your internal users appear to WinGate from 1 IP, then by default they will all be deemed to be the same user.
If you want to use individual user accounts / auth, then you can mark the IP address as being multi-user. to do this, in credential rules, add a rule for that IP, and select "don't allow credentials established by a session to be used by other sessions". This means WinGate will keep individual credentials per connection.
In this case, you'd need a license for each user, and an enterprise license, since this feature requires an enterprise license.
Otherwise, if you don't keep individual credentials, you'd only need 1 user, and that's free.
Is there any option to put WinGate on the boundary? Then you could use individual auth (since WInGate would see each users's IP) without requiring the enterprise level of license.
Regards
Adrien
- adrien
- Qbik Staff
- Posts: 5448
- Joined: Sep 03 03 2:54 pm
- Location: Auckland
2 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 4 guests