Hi, I have a Pepwave 3 Surf Solo running the latest Firmware but I’m a little confused, my SOHO is behind a standard DHCP router connected to the Outside world via my ISP and giving me a Nat’d IP in the range of (say) 192.168.x.x and obviously without the Pepwave I can simply plug into it, pickup a LAN IP and browse.
I purchased the Surf to act as a Firewall behind it, issue a different IP range (2nd NAT) of (say) 10.x.x.x and then allow me to browse normally from the ‘trusted side’ of it. Now it all works and I was happy enough thinking I had a good isolated system . . .
However and quite by chance I ran an IPScan on the 192.168.x.x range (from behind the SOHO and in the 10.x.x.x range) and found to my surprise that I could not only see the main WAN router, but also an IP camera that was connected on that ‘untrusted’ network AND even log into them quite happily.
I appreciate that this traffic may be a one way road (in other words if I initiate it from my SOHO trusted interface that’s allowed but nothing can be initiated from the WAN?), but in previous Firewalls that I’ve used, there is complete isolation from the Firewall LAN and the WAN it’s connected to apart from to route internet traffic.
How do I achieve this on the SOHO? It seems an odd default position they are shipped with and I’m not at all comfortable with the (apparent) lack of isolation? Thanks Tereza