Solved

Using Dynamic NAT with 1-to-1 NAT

Posted on 2006-07-24
9
332 Views
Last Modified: 2010-04-09
Is there normally a problem running dynamic nat with 1-to-1 NAt?

Scenario: all users can access the internet, some computers use dynamic NAt others use 1-to-1 nat,
internet pages constantly need to be reloaded in order to see webpages when more than one user is in the office.

One-to-One Nat setup - each private IP has a public IP

Dynamic NAT setup - one private IP for each pc

All computers are on the same network range 192.168.1.x
0
Comment
Question by:wirelessadmin
9 Comments
 
LVL 9

Accepted Solution

by:
jjoseph_x earned 500 total points
ID: 17169433
Normally that shouldn't be a problem.  Most organizations have a PAT (which is the actual term for that you call Dynamtic NAT) and a NAT setup (usually the PAT is for the users as you're unlikely to have some 50 or more publics IPs with the NAT for certain servers).

I have a setup similar to yours (I've got a NAT address and everyone else uses PAT/Dynmatic Nat) and we don't have the problems that you're experiencing.

What kind of firewall are you using?  Also are you using a proxy server for your web browser?
0
 
LVL 5

Author Comment

by:wirelessadmin
ID: 17170148
firebox firewall
0
 
LVL 9

Expert Comment

by:jjoseph_x
ID: 17170393
Unfortunately I am not-at-all familiar with the Firebox firewall.

However, what you describe seems like a problem with the translation table.  Does this problem only occure for the people with Dynamic Nat, or does it only happen to the people with the 1-to-1 NAT, or does it happen to both of them?
0
Guide to Performance: Optimization & Monitoring

Nowadays, monitoring is a mixture of tools, systems, and codes—making it a very complex process. And with this complexity, comes variables for failure. Get DZone’s new Guide to Performance to learn how to proactively find these variables and solve them before a disruption occurs.

 
LVL 5

Author Comment

by:wirelessadmin
ID: 17171000
both
0
 
LVL 9

Assisted Solution

by:jjoseph_x
jjoseph_x earned 500 total points
ID: 17171016
But if you, for instance, get rid of the 1-to-1 NAT does the problem go away?  If this was related to the translation table, the 1-to-1 NAT shouldn't really be affected...  so it might be something else.

Or this problem might not be related to the NAt at all.
0
 
LVL 9

Expert Comment

by:IPKON_Networks
ID: 17175218
This actually sounds like it might be a caching issue. Do you use a proxy/ISA server?

Sorry to join in the conversation btw.

Barny
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 17175272
Is there any overlap between the dynamic address pool and any of the static nat entries?
How many public IP addresses do you have?
0
 
LVL 5

Author Comment

by:wirelessadmin
ID: 17188563
there is no overlapping
0
 
LVL 9

Expert Comment

by:jjoseph_x
ID: 17251145
So what ended-up being the problem?
0

Featured Post

How Do You Stack Up Against Your Peers?

With today’s modern enterprise so dependent on digital infrastructures, the impact of major incidents has increased dramatically. Grab the report now to gain insight into how your organization ranks against your peers and learn best-in-class strategies to resolve incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question