This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
JayM1
Participant
‎2024-12-06 07:05 AM

NAT Question

I have a /29 public ip range provided by ISP.  Unfortunately all public IPs are in use.   I have an additional MS Direct Access VPN server on DMZ that needs to be configured and added to test.   

Can I just use the same  public ip as the current production server and configure it a hide address instead of doing 1:1 NAT ?   We are using an external DNS glsb that uses the public ip to route traffic to nearest server.   So needed to confirm if it will still work when we have 2 servers behind single NATed IP?

Labels
0 Kudos
3 Replies
Bob_Zimmerman
Authority
Authority
‎2024-12-06 07:47 AM

It should be possible with manual NAT. I'm not sure how automatic static NAT (which creates two static NAT rules) would interact with another thing hide NATing behind the same public address.

I personally would use manual rules and would change any private-to-public rule for the IP you want to use to switch it to hide NAT the internal system behind the public address. That way, all outgoing traffic uses hide NAT, and incoming traffic hits a single static NAT rule. Nice and simple.

JayM1
Participant
‎2024-12-06 11:11 AM
In response to Bob_Zimmerman

Ok will have a look.

0 Kudos
the_rock
Legend
Legend
‎2024-12-06 08:09 AM

Im with Bob on this one, sounds like the most logical approach.

Andy

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top