NAT Question
Experts,
I have taken over on a network where no documentation was left behind. I am trying to see what the NAT address is of each of the six servers are for documenting. On each server if I go to "Whatsmyip.com" on each server it always comes back with the WAN external IP address. The firewall is a Sonicwall TZ190 with enhanced OS. I looked inside to see if there was the NAT rules created in there....which I can see all the external IP's for the domain but all the old server names are still in there? They have since replaced all the servers since the Sonicwall was set up.
Is there any commands that I can run that will show me what the NAT address of each server is so I can match the NAT address to the Internal server address? IE: 66.64.123.456 = 192.168.10.10
Thanks!!!!
I have taken over on a network where no documentation was left behind. I am trying to see what the NAT address is of each of the six servers are for documenting. On each server if I go to "Whatsmyip.com" on each server it always comes back with the WAN external IP address. The firewall is a Sonicwall TZ190 with enhanced OS. I looked inside to see if there was the NAT rules created in there....which I can see all the external IP's for the domain but all the old server names are still in there? They have since replaced all the servers since the Sonicwall was set up.
Is there any commands that I can run that will show me what the NAT address of each server is so I can match the NAT address to the Internal server address? IE: 66.64.123.456 = 192.168.10.10
Thanks!!!!
Based on your testing it appears that from the server side going out the servers are translating on the firewall outside address just like any other workstation. It is possible that when the servers were changed, the new systems were not given 1 to 1 NATs, and are simply translating on the outside address.
Look at it from the other direction. What servers are accessible from the outside, and how are they accessed? Do you have an email server or a web server hosted on the inside? It is possible for these systems to be using NAT on the outside firewall interface, while port address translation is forwarding requests different directions based on incoming port (ie. 25, 80).
Try looking at your external domain DNS records. Where do the various records (www, mail) point to? This may help to determine which external addresses, if any, are still in use.
Look at it from the other direction. What servers are accessible from the outside, and how are they accessed? Do you have an email server or a web server hosted on the inside? It is possible for these systems to be using NAT on the outside firewall interface, while port address translation is forwarding requests different directions based on incoming port (ie. 25, 80).
Try looking at your external domain DNS records. Where do the various records (www, mail) point to? This may help to determine which external addresses, if any, are still in use.
ASKER
Thanks TNL_Engr
There is one external IP that is used for the terminal sever that can be reached via RDP. I dont believe that there is 1 to 1 going on but the firewall is a Sonicwall TZ190 w enhanced OS......far different than a PIX! The access tables are not well defined as to what the access rules and from what I am seeing the external IPs listed in the access tables have the old server names in them. The terminal sever is the only address that can be accessed from the outside, which is a different address from the WAN address. No email or web servers.
There is one external IP that is used for the terminal sever that can be reached via RDP. I dont believe that there is 1 to 1 going on but the firewall is a Sonicwall TZ190 w enhanced OS......far different than a PIX! The access tables are not well defined as to what the access rules and from what I am seeing the external IPs listed in the access tables have the old server names in them. The terminal sever is the only address that can be accessed from the outside, which is a different address from the WAN address. No email or web servers.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
this means that all the internal addresses hide behind the single external IP of the firewall