[Last Call] Learn how to a build a cloud-first strategyRegister Now


If I subnetted a public IP address can I Legally use one of those subnets on a branch office server

Posted on 2008-11-04
Medium Priority
Last Modified: 2012-05-05
Hello Experts, I have been given the task of installing server 2008 on 2 new servers, I am totally new to this and would like some help, i have 2 questions,
1.  If I subnetted a public IP address can I Legally use one of those subnets on a branch office server, and 2. what is a good ene to end hardware firewall device that I should use to connect the two sites.

Thanks for any help
Question by:Pullbeak
LVL 18

Accepted Solution

Andrej Pirman earned 2000 total points
ID: 22877135

regarding 1)
NO, you may not use ANY of public available IP's, if they were not assigned to you via your ISP! Not only this is a violation and misuse, but may aslo be very risky and in many cases WILL lead to IP conflicts in public internet. Do NOT do that!
Also, you should NOT expose your servers directly to public internet - instead, put them beyond firewall or router, which is doing NAT translation, and use public IP on firewall/router's public interface, and LAN subnet (192.168.x.x, or 10.x.x.x) on your local side. From public to local side you should only forward (and open) ports, which you need, others let stay closed for security reasons.
For example, on your router/firewall (NAT device) for the purpose of configuring publically available WEB server, you should forward only 2 ports to be opened to public:

YOUR public IP (port 80) -> FORWADRED TO -> Your LAN IP of server (port 80)
YOUR public IP (port 443) -> FORWADRED TO -> Your LAN IP of server (port 443)

Regarding 2)
depends on how much you can afford to invest.
You may use ANY Cisco 800 or 1800 series routers WITH VPN bundle to connect 2 distant sites into single LAN subnet.
In lower price range, you may use D-link or Linksys or 3com routers, but look at Specs PDF before buying, to be sure that device supports NOT "VPN passthru", but VPN-to-VPN (L2TP) site-to-site connections.

Alternative is also to use ANY router, which supports "VPN passthru" (which most routers support), and configure server on 1st site to be RRAS (VPN) server, and other side server to be VPN client. This sollution is not so reliable, but would work fine if you want to save some money.


Author Closing Comment

ID: 31513105
Thanks for the info, now I think that I can actually set this thing up

Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Hyper-convergence systems have taken the IT world by storm and have quickly started to change our point of view of how the data center should and could be architected. In this article, I’ll explain the benefits of employing a hyper-converged system …
this article is a guided solution for most of the common server issues in server hardware tasks we are facing in our routine job works. the topics in the following article covered are, 1) dell hardware raidlevel (Perc) 2) adding HDD 3) how t…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …
In this video, Percona Solutions Engineer Barrett Chambers discusses some of the basic syntax differences between MySQL and MongoDB. To learn more check out our webinar on MongoDB administration for MySQL DBA: https://www.percona.com/resources/we…
Suggested Courses
Course of the Month18 days, 9 hours left to enroll

826 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question