Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    1 External to 2 internal IP

    Scheduled Pinned Locked Moved NAT
    8 Posts 4 Posters 3.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      drbothen
      last edited by

      I have a block of 5 external IP's. I need one of those IP's to NAT to 2 Internal IP, How do I accomplish this?

      1 Reply Last reply Reply Quote 0
      • P
        podilarius
        last edited by

        You are looking to use port forward. You cannot do this if you are wanting to NAT to the same port on the external side. Perhaps if you give some more details, we could help a little bit more.

        1 Reply Last reply Reply Quote 0
        • D
          drbothen
          last edited by

          I need do a 1 to 1 NAT that looks like this

          24.123.23.100 –-> 192.168.10.10
          24.123.23.100 ---> 192.168.10.11

          Do to my setup I already have the ports That I need being used on my LAN sub net under a different external IP. These are setup on a webserver sub net. If doing a 1 to 1 doesnt work that way, can I assign that whole subnet Its own static external IP? and how would I do that?

          1 Reply Last reply Reply Quote 0
          • chpalmerC
            chpalmer
            last edited by

            Yes you can build ports for each external IP address.

            24.123.23.100:80 –-> 192.168.10.10:80
            24.123.23.101:80 ---> 192.168.10.11:80
            24.123.23.100:25 ---> 192.168.10.12:25
            24.123.23.101:443 ---> 192.168.10.13:443

            Triggering snowflakes one by one..
            Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

            1 Reply Last reply Reply Quote 0
            • D
              drbothen
              last edited by

              I think I'm doing a terrible job explaining what I need

              24.123.23.100 is setup as a virtual IP on my pfsense box. I have to have the following 2 servers share that external address 192.168.10.10 and 192.168.10.11. 192.168.10.10 will have ports 80 and 443 forwarded to it and 192.168.10.11 will have ports 25, 10000, and 20000 to it. I tried to setup a 1 to 1 NAT like below
              24.123.23.100 –-> 192.168.10.10
              24.123.23.100 ---> 192.168.10.11
              I then port forward 80 and 443 to 192.168.10.10 and 25, 10000, 20000 to 192.168.10.11.
              I then tried from a external server from my network to test to insure those ports where open. The 1 to 1 NAT only works for One or the other not both. What do I need to do to get those two servers to share the same external IP address?

              1 Reply Last reply Reply Quote 0
              • chpalmerC
                chpalmer
                last edited by

                Get rid of 1:1 nat from your config.

                Triggering snowflakes one by one..
                Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

                1 Reply Last reply Reply Quote 0
                • P
                  podilarius
                  last edited by

                  1:1 NAT can only work for one IP. You can do what you want with port forward and advanced outbound NAT. Setup the port forwards like to have said, then in the outbound nat, switch to manual and add at the top 2 entries, one for each of the two ip address. For the Address it is translating to, use the common external IP.

                  1 Reply Last reply Reply Quote 0
                  • P
                    pcbosrders
                    last edited by

                    if you haven't solved this
                    try
                    24.123.23.100:80 –-> 192.168.10.10:80
                    24.123.23.100:443 ---> 192.168.10.11:443
                    need to create 2 port forwards
                    so  http (port 80) goes to server 192.168.10.10:80
                    and the 2nd one  forwards (https) port 443 192.168.10.11:443

                    don't fix it, if ain't broken !!!

                    1 Reply Last reply Reply Quote 0
                    • First post
                      Last post
                    Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.