We help IT Professionals succeed at work.

Forwarding Multiple Public IP Addresses to Internal Servers

slattdog
slattdog asked
on
7,071 Views
Last Modified: 2008-08-25
We have 5 static IPs (all in the 255.255.255.248 subnet) via our ISP.  We usa a SonicWALL Pro1260 (Enhanced OS) for our router/firewall.  We have only ever used one of the IPs (as the WAN address of the SonicWALL), but now find oursleves in need of an additional public IP.  For simplicity sake... we have two internal webservers that we want to be able to access via two different IP addresses.  (i.e. publicIP1 forwards to servA publicIP2 forwards to servB)  Both servers need port 80 and 443.  Is there a way to "host" both of the public IPs via the SonicWALL and have them point to different servers respectively?
Comment
Watch Question

setup an ip mapping to point each individual external ip to the web server's internal ips

Author

Commented:
Okay.  But the SonicWALL only has the one public IP (WAN) address.  How do I utilize the other public IPs?

Author

Commented:
I tried adding an additional IP to the OPT port, but it errors out sayinig that the subnet is already in use.
is the sonic wall connected directly to your telecom's box (i know with my comcast commercial, i could modify settings on the telecom box itsself) or possibly call your isp, since every once in a while you get a tech support guy with some knowledge

Author

Commented:
The SonicWALL is connected to a Cisco router managed by AT&T.

Perhaps a little clarification...

I have a pool of 5 IPs (25 through 29 with subnetmask 255.255.255.248) that I can use. The SonicWALL has a WAN (public) side and a LAN (private) side. The LAN side has IP address 192.168.1.1. The WAN side has address 100.100.100.26 (for example). If I point example.domain.com to 100.100.100.27 (via external DNS) how do I get the SonicWALL to handel that IP (in addition to the 100.100.100.26 address)?

Author

Commented:
Correction and additional info...

Actually, the SonicWALL WAN is plugged into a 5 port switch, which then plugs into the Cisco router.  If I take and setup a server and assign it one of my public IPs and connect it to the 5 port switch I can access it externaly no problem.  But how do I handle multiple IPs via the SonicWALL (which is in front of all my servers)?

Author

Commented:
I could take and just plug the server in question into the switch (and give it a public IP) but then I would loose the protection afforded by the SonicWALL.
here is an example from the manual:

Your ISP has given you a public IP address of 66.217.71.191 and a range of public IP address from
66.217.71.192 to 66.217.71.200. To configure the SonicWALL security appliance in Transparent
Mode, select Transparent Mode from the Mode menu. Then follow these steps:
1 Click the icon in the Configure column to display the WAN Settings window.
2 Enter your IP address, 66.217.71.191, in the WAN IP Address field. Complete the rest of the
fields in the WAN Settings window using information provided by the ISP.
3 Click OK.
4 Click Intranet in the Network menu list.
5 Select Specified address ranges are attached to the LAN link.
6 Click Add in the LAN/WAN Client Address Ranges table.
7 Enter your IP address, 66.217.71.192, in the IP Address From field.
8 Enter the IP address, 66.217.71.200, in the IP Address To field and click OK.
9 Click Apply, and then Restart in the Status bar. The SonicWALL security appliance restarts and
updates the configuration.
Note: Transparent Modes are not available on SonicWALL wireless security appliances: TZ150
Wireless, TZ150 Wireless, and the TZ170 Wireless.

page 80, here:  http://www.sonicwall.com/downloads/SonicWALL_SonicOS_Standard_3.1_Administrators_Guide.pdf
Commented:
This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.