?
Solved

Configuring Non-NAT (Netgear DG834 -> Netscreen NS5GT)

Posted on 2005-04-13
7
Medium Priority
?
1,107 Views
Last Modified: 2008-01-09
Hello all,

Apologies if this is more of a hardware question.

We've recently had to swap out a BT ADSL router (5861?) in favour of a new Netgear DG834 ADSL router. During this operation our external IP's supplied by Demon have also changed (don't ask). The new router needs to be configured for Non-NAT and needs to connect to our existing Netscreen NS5GT router/VPN/firewall solution.

The previous BT box had, as far as I'm aware, only the external IP (ie it didn't have one of our internal 10.0.0.X IP's) and this routed straight through to the Netscreen firewall. As I could never look at how the BT box was set up I am a little unsure as to how to configure the DG834 for Non-NAT, straight through routing. I have disabled the NAT option, but still no traffic will pass any further then the Netscreen firewall.

So far I have configured the DG834 to correctly connect to the ADSL (I can ping out from diagnositcs) and I have assigned it the router IP given by our ISP. I have, however, assigned this to both the external and internal addresses, as I was unsure as to how to get the Non-NAT setup passing straight through.

Any guidence would be greatly appreciated!

T
0
Comment
Question by:tjp6685
  • 3
  • 2
6 Comments
 

Author Comment

by:tjp6685
ID: 13773678
I should also mention that I have adjusted the Netscreen settings to reflect the change in external IP that we have undergone - sorry
0
 
LVL 23

Expert Comment

by:Tim Holman
ID: 13775436
Why don't you want to use NAT ?  You're going to have to use it at some point !  :)
If you don't use NAT, then you will need 3 IP address from your ISP - for both interfaces on the Netgear, plus the Netscreen ?  
0
 

Author Comment

by:tjp6685
ID: 13779495
I'm not using NAT because there are several devices that need specific public IP addresses, like our mail server. NAT is enabled on the Netscreen, later on, to deal with the LAN.
0
Veeam and MySQL: How to Perform Backup & Recovery

MySQL and the MariaDB variant are among the most used databases in Linux environments, and many critical applications support their data on them. Watch this recorded webinar to find out how Veeam Backup & Replication allows you to get consistent backups of MySQL databases.

 

Author Comment

by:tjp6685
ID: 13806878
I have found that  the non-NAT setup for my new router was in fact correct. It seems that the old Netscreen firewall had frozen. After a couple of reboots and resetting the firewall rules everything is now working again.
0
 
LVL 23

Expert Comment

by:Tim Holman
ID: 13810649
It all depends how many IP address you've got to play with.
If you have enough that you can split into two subnets, then you don't need NAT on the outside, but if you've only one or two external IPs, then the only way to get things working would be with NAT.
You can always do double NAT - ie NAT a public address to a private on the external router, and then NAT the private back to a public on the internal router - this is quite a common configuration with ISPs (who should know better !)
0
 
LVL 5

Accepted Solution

by:
Netminder earned 0 total points
ID: 13847848
Closed, 500 points refunded.
Netminder
Site Admin
0

Featured Post

Fill in the form and get your FREE NFR key NOW!

Veeam is happy to provide a FREE NFR server license to certified engineers, trainers, and bloggers.  It allows for the non‑production use of Veeam Agent for Microsoft Windows. This license is valid for five workstations and two servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

WARNING:   If you follow the instructions here, you will wipe out your VTP and VLAN configurations.  Make sure you have backed up your switch!!! I recently had some issues with a few low-end Cisco routers (RV325) and I opened a case with Cisco TA…
In this article, WatchGuard's Director of Security Strategy and Research Teri Radichel, takes a look at insider threats, the risk they can pose to your organization, and the best ways to defend against them.
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question