Solved

NAT or Firewall

Posted on 2004-08-10
6
238 Views
Last Modified: 2010-04-11
In our organisation , we want to allow certain officers to access a site which is hosted on ip 192.168.1.2 on a local network.We have our own intranet network which is running on global ip 203.w.x.y.Now,our requirement is the officers should be able to access the site 192.168.1.2 via intranet network.
can this be achieved using  NAT or Firewall or any other way and how ?
0
Comment
Question by:ketanrajul
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 2

Accepted Solution

by:
KJHDI12 earned 84 total points
ID: 11770524

Yes. You would have to configure the 192.168.x.x router to forward incomming connections at the port in question to the 192.168.1.2. For example. To let "outsiders" access the web server of 192.168.1.2 your would have to setup port forwarding on port 80. To connect to this server people will then have to connect to the routers IP http://203.w.x.y and it will look like this router is the webserver in question.
0
 
LVL 7

Assisted Solution

by:EmpKent
EmpKent earned 83 total points
ID: 11771965
If you control the routing in the 203.x.x.x network, you can route 192.168.x.x/16 or any other RFC1918 range if you want. You don't need to NAT or firewall. The problem with that is that anyone can use the 192.168.x.x/16 range and you could run into routing conflicts.

If you do not control routing and those that do will not route 1918 ranges, then you must NAT. Firewalling is a different issue.

Kent
0
 
LVL 2

Assisted Solution

by:jbordelon
jbordelon earned 83 total points
ID: 11779639
NAT (Network Address Translation) commonly is used for assign a public address to a private address. If you want to assign a 203.w.x.y address to the 192.168.1.2 host, use NAT.
Routing is for conduct network packets to the right direction. You could use routing if you want to be able to connect 203.w.x.y network to the 192.168.1.2 network. You have to add the static route 192.168.1.0/24 in the default gateway of the 203.w.x.y network and add the static route 203.w.x.y/z in the default gateway of the 192.168.1.2 network.
Firewall is for restrict and protect your network for unauthorized traffic. If you want that only 203.w.x.y host will be able to connect to 192.168.1.2 network, use Firewall. Modern Firewalls have routing and NAT functions incorporated on their operatig system.
0

Featured Post

Salesforce Made Easy to Use

On-screen guidance at the moment of need enables you & your employees to focus on the core, you can now boost your adoption rates swiftly and simply with one easy tool.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Learn how to PXE Boot both BIOS & UEFI machines with DHCP Policies and Custom Vendor Classes
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question