Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 897
  • Last Modified:

Local Loopback/Internet NAT redirection on Billion Biguard2

I have an exchange 2007 activesync server set up on my internal network, with no Edge server. I have the push tech configured correctly, and users receive emails with no trouble externally. However, when they are on their local LAN using the mobile devices WiFi, they are unable to make a connection.

I understand this is due to Local Loopback not being enabled, or as Linksys call it, "Filter Internet NAT Redirection".

I know it is possible with DNS to set this up, but we have an external DNS server for our web domain. Which makes it a bit of a clunky solution.

Is it a case of setting up a static route? or maybe a bit more difficult?
0
Lucascadams
Asked:
Lucascadams
  • 3
  • 3
1 Solution
 
Jay_GridleyCommented:
I would say it's a bit more difficult. The problem is that you have (obviously) configured the external IP address through it's DNS name, let's call it pda.external.com.

The problem is that when your are inside your LAN it will try to connect to the external IP address from the inside, which is not supported.
DNS would be a solution as you could create a A-record with the same name (pda.external.com), but pointing it to the internal server in stead.
A route would not be a sollution to this problem.

If you do not have the ability to change the DNS records I wouldn't know an answer to this problem. You could try creating a DNS server for the sole purpose of hosting external.com ,but this could have unexpected problems to the rest of the network. This would for example mean that you would be unable to reach www.external.com from a pc on your local LAN, unless you create a A-record for this site as well. This might or might not be an option depending on the size of your network and the number of sites you need to reach on .external.com.

I hope this makes sense.

JG.
0
 
LucascadamsAuthor Commented:
Hmm,

How about this:

I can add another A record to the external DNS server like below, and then create a local copy of the DNS server on the internal network.

pda.company.co.uk in "external ip"
pda.company.co.uk in "local ip"

will they intefere with each other?
0
 
LucascadamsAuthor Commented:
The sort of solution I am looking for is to allow users inside the local network to access the server from the external network. I know it is possible on a Linksys router as I have done it before.

The DNS solution could work fine though.
0
Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

 
Jay_GridleyCommented:
This would not work.
If you create 2 seperate A-records for the same DNS name they will perform "round robin", meaning they will perform a kind of 'load balancing' between the 2 addressess choosing either the one or the other.

Since the one is only available inside and the other outside this would not be what you're looking for.
0
 
LucascadamsAuthor Commented:
I managed to solve the problem.

My internet connection has a LAN IP which it gives my router, which is not my external IP address.

I set the WAN IP Alias setting on the router to my external IP address, and it allowed me to connect to my server internally, from the external address.


0
 
Jay_GridleyCommented:
Good thinking. I'm glad you solved it!

JG
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now