Solved

Routing problem

Posted on 2001-07-03
4
178 Views
Last Modified: 2012-05-04
How to describe a network which is behind the router so it can be visible from the Internet. How to do it if my router is CISCO or Linux server?
0
Comment
Question by:CyberGod
  • 2
  • 2
4 Comments
 
LVL 40

Accepted Solution

by:
jlevie earned 200 total points
ID: 6250538
That depends on what kind of network is behind the router. If you are talking about a network that uses private, non-routable IP's, then you must have some form of NAT (Network Address Translation) on the router. Exactly how that's done depends on how large your private network is and how many Internet addressible IP's you have. On the other hand, if your network that is behind the router uses Internet routable IP's, then it is simply a matter of configuring the router and hosts on the network correctly.

There are three general cases to consider. One is that you have an Internet accessible netblock that is as large or larger than your inside network. In that case you can use static NAT where each outside IP translates to a specific inside IP. The second case occurs when your outside netblock is smaller than your inside network, but large enough to provide visibility for those hosts that need to be visble from the Internet plus at least one more outside IP. In that case you set up static NAT translations for the inside hosts that must be Internet accessible and use NPAT (Network Port Address Translation... aka PAT, aka IPMasquerade) for the remainder of the inside network. Those machines can still access Internet sites, but they can't be accessed from the Internet. The last case is where you only have a single outside IP. There your only choice is to use NPAT. It is possible to port forward a specific service to an inside host, but you can't forward that particular service to multiple inside hosts. I.e., you can forward HTTP traffic (port 80/TCP) to one inside host and only one particular inside host.

If you would provide more details of your Internt connection, what kind of inside network you have, what needs to be visible to the Internet we can provide a more detailed response.
0
 

Author Comment

by:CyberGod
ID: 6275930
My connection behind the router is LAN with 132 computers. Is it posible if the local network is having a class C network addresses (192.16.8.X.X) to visible from the internet if the router is Linux with or without NAT enable?
0
 
LVL 40

Expert Comment

by:jlevie
ID: 6279135
If the local network is using any of the private, non-routable, address ranges (like 192.168.n.n) then you have to use NAT in order to have any kind of Internet connectivity. IP's within the private address ranges will never be routed across the Internet so your local gateway must use some form of NAT to translated those IP's into one or more public, routable, IP addresses. That takes care of connections to Internet sites initiated from within the local network.

As I said above, making one of more hosts on the local (inside) network visible to the Internet can be done. How many hosts that can be made visible depends entirely on what kind of Internet service you have and how many public IP's you've been allocated.


So how many outside IP's do you have allocated to you by your service provider?
0
 

Author Comment

by:CyberGod
ID: 6279751
I have one full clas C network, and soon I'll have anather one.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Join & Write a Comment

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now