Cannot access own public IP in 1:1 NAT
-
Hi,
I have a DMZ network that has only one machine and 1:1 NAT setup for it's public IP. This setup works, even NAT reflection works flawlessly from other LANs. The only thing I can't do is to access the public IP from the server it is designated to.
I use 'proxy arp' for virtual ip.
Let's say:- x.y.z.z is the virtual IP
- a.b.c.d is the DMZ lan IP
I can curl the xy.y.z.z from anywhere. But when I run curl on a.b.c.d host it does not work - like the traffic is not reflected back to the same host.
-
When I disable NAT reflection the machine is able to access it's own IP address again.
-
I used such workaround:
I changed 1:1 NAT mapping to exclude a.b.c.d IP and use reflection. I then cloned the mapping and changed it only to include this a.b.c.d IP and disable reflection. And this works. Any better way to do this? I'm kinda walking a thin line of not knowing entirely what I'm doing here ;) -
-
@steveits thanks for reply :) split dns won't help in this case since the service is using ipv4 only. But the fix above seems to work :)