I have been using the great firewall solution IPCOP for a while now. Until recently I never had a reason to connected to the Orange interface, the DMZ, remotely. I found that I had to perform some teaking in order to do this.
To connect to another subnet (interface) of your IPCop machine from the internet you must edit the server.conf file. This will allow access to your Orange and Blue zones along with the standard green zone.
I used the great software WinSCP to connect to my firewall and edit the file server.conf.
File Location: /var/ipcop/ovpn/server.conf
Green interface IP: 192.168.0.254
Orange interface IP: 192.168.10.254
In this file you should find the following line push “route 192.168.0.0 255.255.255.0″ This is the IP and Subnet of your Green interface.
I added the line push “route 192.168.100.0 255.255.255.0″ the the file to allow connections to be made to my Orange Interface.
I then rebooted the IPCop machine and it was all tickety boo!
Depending on how your machine is configured the numbers you see above may be different. So please don’t just cut and paste. Check out your own configuration.