Solved

Is it possible to assign two public IPs from different ISPs to one private IP?

Posted on 2008-10-10
4
200 Views
Last Modified: 2010-04-02
I am actually pretty sure the answer to this is "No", but I have to be certain.  Basically, I have a server that is located at a remote office with it's own ISP connection and a static NAT.  It is connected to the main office via a point-to-point fiber connection.  Can I use a public IP from the main office and point it to the internal address at the remote office as a secondary NAT so to speak?
0
Comment
Question by:NRL71
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 2

Expert Comment

by:scottbortis
ID: 22689245
I know you can do this with a Cisco IOS 8(x).  It is called hairpinning.  That assumes that you have a VPN connection.  

If it is just a subnet of your existing system, you can have your perimeter security device just route to that I believe using DNS forwarders...I believe.

0
 
LVL 2

Expert Comment

by:scottbortis
ID: 22689258
http://www.cisco.com/en/US/docs/security/asa/asa70/configuration/guide/vpnsysop.html

is the link to cisco hairpinning for future referece to the KB
0
 

Author Comment

by:NRL71
ID: 22689305
It's not a VPN connection - it is a subnet of the network at the remote office connected via a P2P DS3 with 7206 routers terminating them.  I have ASA 5540s at each location for the fw.
0
 
LVL 2

Accepted Solution

by:
scottbortis earned 500 total points
ID: 22689404
Setup an access list on the ASA on the outside of your main site that allows traffic for your subnet.  Then set a route that sends traffic to the internal 7206 router on the other side of that connection.  

i.e. if your host network is 10.1.0.x and your subnetted network was 10.3.0.x you can use a command like the following:

route inside 10.3.0.0 255.255.0.0 10.1.0.3 1

providing that 10.1.0.3 is the 7206 router on your side of the DS3

Then it is just a matter of setting a static route in your ASA to direct traffic to the appropriate subnet.
0

Featured Post

Simple, centralized multimedia control

Watch and learn to see how ATEN provided an easy and effective way for three jointly-owned pubs to control the 60 televisions located across their three venues utilizing the ATEN Control System, Modular Matrix Switch and HDBaseT extenders.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Sonicwall Email los and Alerts 1 68
Strange addresses from DHCP 8 107
Public IP Address Amazon Servers 2 68
Change subnet - effects on server 14 38
Network ports are the threads that hold network communication together. They are an essential part of networking that can be easily ignore or misunderstood, my goals is to show those who don't have a strong network foundation how network ports opera…
Configuring network clients can be a chore, especially if there are a large number of them or a lot of itinerant users.  DHCP dynamically manages this process, much to the relief of users and administrators alike!
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question