Forward multiple external ports to same internal port but different IP addresses
Hi,
Is it possible to forward multiple external ports to the same internal port but different internal IP address?
Example:
Lets say i run an internal IIS server for our company website, and use the NAT/PAT on the router to forward all external traffic on port 80 to this server. Then, lets say i set up an exchange server and want to set up OWA for users. This would require that i send port 80 traffic to a seperate location. Could i therefore continue forwarding all external port 80 traffic to port 80 on the IIS server, and set up a new port (lets say 6000) and instruct users to apply port 6000 at the end of the web address. I could then configure the router to forward all external traffic on port 6000 to port 80 on the exchange server?
Problem is, i have tried this, and i just get errors saying:
The port ranges overlapped: test (80-80) <--> HTTP (80-80
Thing is, i have tried this with different combinations of routers (bulk of which are belkin and netgear) and i get this kind of error everytime.
Is there something i should know about NAT/PAT in terms of translating external ports to the internal ports but different ip addresses?
Thanks.
Is it possible to forward multiple external ports to the same internal port but different internal IP address?
Example:
Lets say i run an internal IIS server for our company website, and use the NAT/PAT on the router to forward all external traffic on port 80 to this server. Then, lets say i set up an exchange server and want to set up OWA for users. This would require that i send port 80 traffic to a seperate location. Could i therefore continue forwarding all external port 80 traffic to port 80 on the IIS server, and set up a new port (lets say 6000) and instruct users to apply port 6000 at the end of the web address. I could then configure the router to forward all external traffic on port 6000 to port 80 on the exchange server?
Problem is, i have tried this, and i just get errors saying:
The port ranges overlapped: test (80-80) <--> HTTP (80-80
Thing is, i have tried this with different combinations of routers (bulk of which are belkin and netgear) and i get this kind of error everytime.
Is there something i should know about NAT/PAT in terms of translating external ports to the internal ports but different ip addresses?
Thanks.
ASKER
Hi,
I would use port 6000 as the external (public) port, and port 80 as the internal port.
Is there no way to do this with routers which can perform NAT/PAT?
Thanks.
I would use port 6000 as the external (public) port, and port 80 as the internal port.
Is there no way to do this with routers which can perform NAT/PAT?
Thanks.
That sould be the idea.
It could be you switched the LAN/Public settings on the router, so giving the overlap error.
The only correct setting is as I stated. If the router failed to accept those values, it can't be done with the router.
As I see "The port ranges overlapped: test (80-80) <--> HTTP (80-80)", you sure entered 6000 in the public port for one of the portforwards?
It could be you switched the LAN/Public settings on the router, so giving the overlap error.
The only correct setting is as I stated. If the router failed to accept those values, it can't be done with the router.
As I see "The port ranges overlapped: test (80-80) <--> HTTP (80-80)", you sure entered 6000 in the public port for one of the portforwards?
ASKER
Yes they are definitely in the right places. 'test' and 'http' are just the labels i have given to the forwards i am setting up. The thing is, the error is stating that i am trying to map port 80 to port 80, however i am not, i am definitely entering port 6000 to port 80.
I guess what i am trying to ask then is 'Is it possible for this to be done with a different make/model of router?'
If anybody knows of one which they have set up with this type of configuration successfully, it would be much appreciated!
Thanks.
I guess what i am trying to ask then is 'Is it possible for this to be done with a different make/model of router?'
If anybody knows of one which they have set up with this type of configuration successfully, it would be much appreciated!
Thanks.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi engeltje,
During a new network installation for a client, i attempted this exact same technique we discussed above. As expected, there were no problems in doing this, so i can only assume that there is a bug in the firmware of the router.
Thank you making this suggestion, for which i will reward you the points. As for anybody finding this post in the future, this technique is perfectly do-able. Just make sure that your router has the latest firmware or perhaps the manufacturer is not even aware of the issue yet. If so - good luck in trying to tell them about it!
During a new network installation for a client, i attempted this exact same technique we discussed above. As expected, there were no problems in doing this, so i can only assume that there is a bug in the firmware of the router.
Thank you making this suggestion, for which i will reward you the points. As for anybody finding this post in the future, this technique is perfectly do-able. Just make sure that your router has the latest firmware or perhaps the manufacturer is not even aware of the issue yet. If so - good luck in trying to tell them about it!
Thanks,
Perhaps a firmware update can help you out with the old router.
Perhaps a firmware update can help you out with the old router.
It can be done, but I am not shure a router can.
It could be a good idea to put a hardware firewall between the router and the network. Those are specially made for doing forwards (and give more security).
I use a Netscreen for now, and I do exacly the same. I have 3 servers on port 80, which have different ports on the outside.