PDA

View Full Version : NAT prob!!



kevin_turner
2008-05-22, 03:54
I have 1 public ip address(192.168.x.x) and have 1 ftp(20.20.20.201) and 1 http(20.20.20.202) server installed on different machines, by using 1 public ip addresses i want to access both the services, can anyone tell how this can be done?(if v can do it using manual nat then please tell the procedure)...thanks

MarioL
2008-05-22, 07:18
You need to create 3 objects:
192.168.x.x
20.20.20.201
20.20.20.202
create a group with the 20.20.20.X

Then create 3 NAT rules
Any | 192.168.x.x | ftp | = | 20.20.20.201 | =
Any | 192.168.x.x | http | = | 20.20.20.202 | =
20.20.20.x | Any | Any | 192.168.x.x | = | =

All these rules should use Static NAT (well the last one could also be Hide).

kevin_turner
2008-05-23, 03:04
Do we need to change anything in routing table or ARP table?

MarioL
2008-05-23, 07:33
Depends on versions, platforms and "Global Properties".

You will have to add ARP for the 192.168.x.x IP, unless it's already routed to the firewall.
If you are using translate on client side for manual NAT rules anti-spoofing will be fine and I think you might not even need to add routes on certain platforms.

On certain platforms you should add a route like:
192.168.x.x nm 255.255.255.255 gw 20.20.20.201 or 202
just to force the firewall to route the packets to the right interface.