[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 205
  • Last Modified:

Is it possible to assign two public IPs from different ISPs to one private IP?

I am actually pretty sure the answer to this is "No", but I have to be certain.  Basically, I have a server that is located at a remote office with it's own ISP connection and a static NAT.  It is connected to the main office via a point-to-point fiber connection.  Can I use a public IP from the main office and point it to the internal address at the remote office as a secondary NAT so to speak?
0
NRL71
Asked:
NRL71
  • 3
1 Solution
 
scottbortisCommented:
I know you can do this with a Cisco IOS 8(x).  It is called hairpinning.  That assumes that you have a VPN connection.  

If it is just a subnet of your existing system, you can have your perimeter security device just route to that I believe using DNS forwarders...I believe.

0
 
scottbortisCommented:
http://www.cisco.com/en/US/docs/security/asa/asa70/configuration/guide/vpnsysop.html

is the link to cisco hairpinning for future referece to the KB
0
 
NRL71Author Commented:
It's not a VPN connection - it is a subnet of the network at the remote office connected via a P2P DS3 with 7206 routers terminating them.  I have ASA 5540s at each location for the fw.
0
 
scottbortisCommented:
Setup an access list on the ASA on the outside of your main site that allows traffic for your subnet.  Then set a route that sends traffic to the internal 7206 router on the other side of that connection.  

i.e. if your host network is 10.1.0.x and your subnetted network was 10.3.0.x you can use a command like the following:

route inside 10.3.0.0 255.255.0.0 10.1.0.3 1

providing that 10.1.0.3 is the 7206 router on your side of the DS3

Then it is just a matter of setting a static route in your ASA to direct traffic to the appropriate subnet.
0

Featured Post

Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now