 |
07-10-2009, 11:34 AM
|
|
Junior Member
|
|
Join Date: Jul 2009
Posts: 12
|
|
nat problem
Hi!
i have some problem with nat as i think.
have server with internal ip (192.168.4.5)
this server connected to external ip 80.74.100.12
and can be reached from anywhere (working)
when i try to access this server by this ip(80.74.100.12) through internal network i mean from one of (192.168.x.x) i cant...
all internal network have internet access through 80.74.100.10
so for me its look like 192.168.4.x ->80.74.100.10->80.74.100.12->192.168.4.5 ...this is not working....
so from this i need somehow made that 80.74.100.12 will work from inside (internal ip)
sorry for bad english...
|
07-10-2009, 08:56 PM
|
|
Moderator
|
|
Join Date: Jul 2001
Location: southern California
Posts: 4,928
|
|
So you have multiple external IPs, and you have a DNAT on .12?
Barry
__________________
http://DealBert.net
Home & business end-user since v1.x - ASL 6.3x, HP DL145 Dual Opteron, 1GB RAM, 6 gigE NICs, 50-IP Platinum License
- ASL 7.3x, Dell PE1550 Dual PIII 1GHz, 1GB RAM, 2 NICs, 50-IP Platinum License
- ASL 7.501, 17-watt fanless mini-ITX system: MSI IM-945GSE-A Atom n270, 2GB RAM, Morex T3310 case. 2 Intel GigE, 3 VLANs. 80G 5200rpm 2.5" HD
Netgear GS108T gigE VLAN switch & Linksys WRT54G WAP
Total network infrastructure: 27 watts. 100-IP Home User. FiOS 10mb/2mb
|
07-11-2009, 12:36 AM
|
|
Junior Member
|
|
Join Date: Jul 2009
Posts: 12
|
|
yes...all inside lan exit to net with x.x.x.10 and x.x.x.12 is external ip for this specific server dedicated..
|
07-11-2009, 12:40 AM
|
|
Moderator
|
|
Join Date: Jul 2001
Location: southern California
Posts: 4,928
|
|
Can you post your NAT settings?
I think though the problem is that a nat on a secondary IP doesn't work this way from the internal network.
7.5 may fix that, iirc.
Barry
__________________
http://DealBert.net
Home & business end-user since v1.x - ASL 6.3x, HP DL145 Dual Opteron, 1GB RAM, 6 gigE NICs, 50-IP Platinum License
- ASL 7.3x, Dell PE1550 Dual PIII 1GHz, 1GB RAM, 2 NICs, 50-IP Platinum License
- ASL 7.501, 17-watt fanless mini-ITX system: MSI IM-945GSE-A Atom n270, 2GB RAM, Morex T3310 case. 2 Intel GigE, 3 VLANs. 80G 5200rpm 2.5" HD
Netgear GS108T gigE VLAN switch & Linksys WRT54G WAP
Total network infrastructure: 27 watts. 100-IP Home User. FiOS 10mb/2mb
|
07-11-2009, 01:03 AM
|
|
Junior Member
|
|
Join Date: Jul 2009
Posts: 12
|
|
all worked before 2 last updates.
later ill post settings...but setting is simple..
in pocket filter i have any ->port->internal server ip
in dnat i have : any->port->external ip->destination-internal server ip
|
07-11-2009, 02:31 AM
|
|
Moderator
|
|
Join Date: Jul 2001
Location: southern California
Posts: 4,928
|
|
Which version are you running? 7.404?
Barry
__________________
http://DealBert.net
Home & business end-user since v1.x - ASL 6.3x, HP DL145 Dual Opteron, 1GB RAM, 6 gigE NICs, 50-IP Platinum License
- ASL 7.3x, Dell PE1550 Dual PIII 1GHz, 1GB RAM, 2 NICs, 50-IP Platinum License
- ASL 7.501, 17-watt fanless mini-ITX system: MSI IM-945GSE-A Atom n270, 2GB RAM, Morex T3310 case. 2 Intel GigE, 3 VLANs. 80G 5200rpm 2.5" HD
Netgear GS108T gigE VLAN switch & Linksys WRT54G WAP
Total network infrastructure: 27 watts. 100-IP Home User. FiOS 10mb/2mb
|
07-11-2009, 11:14 AM
|
|
Junior Member
|
|
Join Date: Jul 2009
Posts: 12
|
|
Firmware version: 7.404
Pattern version: 10024
|
07-11-2009, 05:47 PM
|
 |
Member
|
|
Join Date: Dec 2008
Posts: 57
|
|
You say that your internal clients access the internet via a different gateway than the one your server is on.
Are they using the same Astaro (so you have at least two external interfaces on one Astaro)? Or is there a different Astaro for your internal clients.
If your internal clients and your server are using the same Astaro with two external interfaces, then there could also be a problem with policy routes and/or SNAT
|
07-11-2009, 06:20 PM
|
|
Junior Member
|
|
Join Date: Jul 2009
Posts: 12
|
|
all my clients and this server exit to internet through one and only one astaro and one netadress 80.74.100.10
but when u type 80.74.100.12 you will enter to this server ...192.168.4.5
and all this working...
but when i try to type this adress 80.74.100.12 from one of my clients i cant enter to this server...
this adress 80.74.100.12 work only from outside network computers...
maybe i explane somethig wrong so be free to ask...
10x...
|
07-11-2009, 06:43 PM
|
 |
Moderator
|
|
Join Date: Mar 2007
Location: Oklahoma City
Posts: 4,952
|
|
mxmone, I'm trying to figure out WHY you want to do this. I'm guessing that you want internal users to be able to access the server using its FQDN: h**p://servername.domainname.com/. If that's the reason, then why not just add a record to your internal DNS or to the Astaro: 'servername.domainname.com->192.168.4.5'
Cheers - Bob
__________________
ACE V7 - Astaro Preferred Partner since V3
Addicted to my iPhone!
|
| Thread Tools |
|
|
| Display Modes |
 Linear Mode
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT. The time now is 10:45 PM.
| |  |
