Whois website in the server always show the first WAN port IP, even NAT server already setup.

Publication Date:  2012-10-19 Views:  191 Downloads:  0
Issue Description
Access to whois website and check the IP address user getting
Alarm Information
There is no alarm due to user miss configuration.
Handling Process
Calling user and get more information, and actually find out user not so sure about the firewall concept.
Root Cause
User put server in the Trust zone and both WAN link in the untrust zone.
Suggestions
Explain to user firewall zone needed to be declare properly for the WAN link, Server, Department.

Example :
WAN link 1 = Firewall Zone name SingNET
WAN link 2 = Firewall Zone name StarHUB
Department HR = Firewall Zone name HR
Department Sales = Firewall Zone name Sales
Department Account = Firewall Zone name Account
Guest = Firewall Zone name Guest
FTP Server = Firewall Zone name FTP server
HTTP Server = Firewall Zone name HTTP Server

If the Firewall zone did not declare in the proper way, in future if implementation are needed, it will having difficulties to trace back which port is connected to which port, which vlan is for which device.(unless track physically).

END