Where should I run NAT from?

Posted on 2006-05-15
Medium Priority
Last Modified: 2010-03-18
I currently have a Cisco 1720 series router configured as if it was a gateway for all other equipment on my network, say, I have a netscreen firewall with NAT turned on forwarding all internet traffic to this ip address and the wan on this same subnet, My question is should I be giving the new 2800 series router I am replacing the 1720 with an internal ip for it's lan port and let the router do all NAT or should I just leave the network alone and continue to allow my firewall to do all NAT? What are the benefits of letting the router do NAT as opposed to the firewall which is working fine?
Note: The 2800 router does not have firewall nor VPN enabled as the Netscreen firewall is handling all of this also!
Question by:ScubeduFan
1 Comment

Accepted Solution

norgan earned 400 total points
ID: 16686928
use the netscreen. you should have the external ip available on one device only, this will mimimise your risks of hacking or dos. since nat is a basic form of a firewall it would make more logical sense to use the netscreen as both your nat and firewall service.

Featured Post

[Webinar On Demand] Database Backup and Recovery

Does your company store data on premises, off site, in the cloud, or a combination of these? If you answered “yes”, you need a data backup recovery plan that fits each and every platform. Watch now as as Percona teaches us how to build agile data backup recovery plan.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Trying to figure out group policy inheritance and which settings apply where can be a chore.  Here's a very simple summary I've written which might help.  Keep in mind, this is just a high-level conceptual overview where I try to avoid getting bogge…
Measuring Server's processing rate with a simple powershell command. The differences in processing rate also was recorded in different use-cases, when a server in free and busy states.
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Planning to migrate your EDB file(s) to a new or an existing Outlook PST file? This video will guide you how to convert EDB file(s) to PST. Besides this, it also describes, how one can easily search any item(s) from multiple folders or mailboxes…

612 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question