Link to home
Start Free TrialLog in
Avatar of jeff_trent
jeff_trentFlag for United States of America

asked on

Routing or redirecting traffic on a laptop

I have an application that communicates with a public IP address which is a static NAT in our firewall pointing to the internal IP address of the server that hosts the DB.  The problem is that for internal testing purposes, we can't go out and back in on the outside interface of our PIX Firewall.  What I'd like to do is setup some sort of redirection on the local machine for testing that routes traffic for public IP A.B.C.D to the internal address of W.X.Y.Z

The internal address is directly visible from the machine in quesion, so adding a persistent route to the route table doesn't seem like the way to go.  Any suggestions?
Avatar of Thejaka
Thejaka
Flag of Sri Lanka image

Won't simply adding an entry to the hosts file of the test client machine do?
I meant using an alias instead of an ip address.
Well?

If you must use an ip address, then perhaps the least messy way of doing this would be to open a vpn channel between db server and the test client, then use the public ip as the client ip at the db server end, while blocking the public ip on the interfaces with access to the external ip on the test client machine (using static routes etc.).
Another method involves reconfiguring the LAN router, provided both the test client and the db server are on the same physical subnet.
Avatar of jeff_trent

ASKER

Thejaka:

Thanks for your comments.  I just got back into the office and saw your posts.

Unfortunately, the hosts file idea won't work because the application uses the IP Address and not the DNS Name (so setting it up on internal DNS wouldn't work either).

The VPN idea isn't feasible because this app exists on several machines, and we don't want to try to establish that many VPN tunnels to solve a problem that can likely be fixed in a more efficient manner.

I suspect that a router config change would work, however, I'm not sure how to do it on a Foundry Edge Iron X448 switch.  We do have the Layer3 routing package on this switch, but I'm not familiar enough with the routing commands to do this.  This may work, and may prove to be our only viable option, but I'm not giving up hope just yet.  

Surely there is a way to redirect IPs in a fashion similar to how NAT routers do port forwarding.  I have tried to use NETSH on a test machine to accomplish this on the client side, but to no avail.

Any other ideas?
ASKER CERTIFIED SOLUTION
Avatar of Thejaka
Thejaka
Flag of Sri Lanka image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Your answers were all great, and while not EXACTLY what I'm looking for, it is easier to occasionally place this machine on a different network to do testing.  It eliminates the need for the routing...

Thanks for all the effort...