Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

NAT or Firewall

Posted on 2004-08-10
6
Medium Priority
?
251 Views
Last Modified: 2010-04-11
In our organisation , we want to allow certain officers to access a site which is hosted on ip 192.168.1.2 on a local network.We have our own intranet network which is running on global ip 203.w.x.y.Now,our requirement is the officers should be able to access the site 192.168.1.2 via intranet network.
can this be achieved using  NAT or Firewall or any other way and how ?
0
Comment
Question by:ketanrajul
6 Comments
 
LVL 2

Accepted Solution

by:
KJHDI12 earned 336 total points
ID: 11770524

Yes. You would have to configure the 192.168.x.x router to forward incomming connections at the port in question to the 192.168.1.2. For example. To let "outsiders" access the web server of 192.168.1.2 your would have to setup port forwarding on port 80. To connect to this server people will then have to connect to the routers IP http://203.w.x.y and it will look like this router is the webserver in question.
0
 
LVL 7

Assisted Solution

by:EmpKent
EmpKent earned 332 total points
ID: 11771965
If you control the routing in the 203.x.x.x network, you can route 192.168.x.x/16 or any other RFC1918 range if you want. You don't need to NAT or firewall. The problem with that is that anyone can use the 192.168.x.x/16 range and you could run into routing conflicts.

If you do not control routing and those that do will not route 1918 ranges, then you must NAT. Firewalling is a different issue.

Kent
0
 
LVL 2

Assisted Solution

by:jbordelon
jbordelon earned 332 total points
ID: 11779639
NAT (Network Address Translation) commonly is used for assign a public address to a private address. If you want to assign a 203.w.x.y address to the 192.168.1.2 host, use NAT.
Routing is for conduct network packets to the right direction. You could use routing if you want to be able to connect 203.w.x.y network to the 192.168.1.2 network. You have to add the static route 192.168.1.0/24 in the default gateway of the 203.w.x.y network and add the static route 203.w.x.y/z in the default gateway of the 192.168.1.2 network.
Firewall is for restrict and protect your network for unauthorized traffic. If you want that only 203.w.x.y host will be able to connect to 192.168.1.2 network, use Firewall. Modern Firewalls have routing and NAT functions incorporated on their operatig system.
0

Featured Post

WatchGuard Case Study: Museum of Flight

“With limited money and limited staffing, we didn’t have a lot of choices in terms of what we could do to bring efficiency. WatchGuard played a central part in changing that.” To provide strong, secure Wi-Fi access within the museum, Hunter chose to deploy WatchGuard’s AP120 APs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Learn how to PXE Boot both BIOS & UEFI machines with DHCP Policies and Custom Vendor Classes
This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

926 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question