4. 1 External to 2 internal IP

1 External to 2 internal IP

  • D

    I have a block of 5 external IP's. I need one of those IP's to NAT to 2 Internal IP, How do I accomplish this?

    0
  • P

    You are looking to use port forward. You cannot do this if you are wanting to NAT to the same port on the external side. Perhaps if you give some more details, we could help a little bit more.

    0
  • D

    I need do a 1 to 1 NAT that looks like this

    24.123.23.100 –-> 192.168.10.10
    24.123.23.100 ---> 192.168.10.11

    Do to my setup I already have the ports That I need being used on my LAN sub net under a different external IP. These are setup on a webserver sub net. If doing a 1 to 1 doesnt work that way, can I assign that whole subnet Its own static external IP? and how would I do that?

    0

  • Yes you can build ports for each external IP address.

    24.123.23.100:80 –-> 192.168.10.10:80
    24.123.23.101:80 ---> 192.168.10.11:80
    24.123.23.100:25 ---> 192.168.10.12:25
    24.123.23.101:443 ---> 192.168.10.13:443

    0
  • D

    I think I'm doing a terrible job explaining what I need

    24.123.23.100 is setup as a virtual IP on my pfsense box. I have to have the following 2 servers share that external address 192.168.10.10 and 192.168.10.11. 192.168.10.10 will have ports 80 and 443 forwarded to it and 192.168.10.11 will have ports 25, 10000, and 20000 to it. I tried to setup a 1 to 1 NAT like below
    24.123.23.100 –-> 192.168.10.10
    24.123.23.100 ---> 192.168.10.11
    I then port forward 80 and 443 to 192.168.10.10 and 25, 10000, 20000 to 192.168.10.11.
    I then tried from a external server from my network to test to insure those ports where open. The 1 to 1 NAT only works for One or the other not both. What do I need to do to get those two servers to share the same external IP address?

    0

  • Get rid of 1:1 nat from your config.

    0
  • P

    1:1 NAT can only work for one IP. You can do what you want with port forward and advanced outbound NAT. Setup the port forwards like to have said, then in the outbound nat, switch to manual and add at the top 2 entries, one for each of the two ip address. For the Address it is translating to, use the common external IP.

    0
  • P

    if you haven't solved this
    try
    24.123.23.100:80 –-> 192.168.10.10:80
    24.123.23.100:443 ---> 192.168.10.11:443
    need to create 2 port forwards
    so  http (port 80) goes to server 192.168.10.10:80
    and the 2nd one  forwards (https) port 443 192.168.10.11:443

    0
Locked
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2018 Rubicon Communications, LLC | Privacy Policy