RRAS / NAT / Firewall
Posted on 2008-10-23
I configured RRAS on a 2003 server with 2 interfaces. Interface 1 is attached to my business network, and gets it IP from DHCP. Interface 2 is attached to an "internal network" and i gave it an ip addres in this range.
I enabled basic routing and added some routes. Everything works fine! computers in both networks can ping eachother.
The business network has internet connectivity, and i would like to add internet connectivity to my internal network. So I enabled & configured NAT (without any firewall). Now i have internet on the internal network, and i still can ping to computers in the business network.
However, from the business network I'm not able to ping to the internal network anymore.... (not even the private interface of the rras server..)
As soon as i remove the public interface from NAT, i get responses, however at this moment the internet connection in my private network will be lost.
It seems there's some kind of firewall configured as soon as i add the public interface to NAT....????