WatchGuard’s Threat Lab is a group of dedicated threat researchers committed to helping you stay ahead of the bad guys by providing in-depth analysis of the top security threats to your network. Check out this quarters report on the threats that shook the industry in Q4 2017.
Emulate or spoof my own ip address
I have a vpn server that has the only external IP address recognized by the clients I am making the VPN connection to. I did not set this up and have not been able to get the connection changed to accept our external ip. I need to have a backup server to make these VPN connections.
Does anyone know of a way to accomplish the task of making two servers appear to be comming from the same address, or making it look like they are using the same IP address for the outgoing address? The IP allowed by the clients is not the external IP of our router it is the IP of the server.
Does anyone know of a way to accomplish the task of making two servers appear to be comming from the same address, or making it look like they are using the same IP address for the outgoing address? The IP allowed by the clients is not the external IP of our router it is the IP of the server.
Asked:
Who is Participating?
So your external clients hit 1 IP and you want to have 2 machines answer for backup purposes.
Since you can't have 2 machines share the same IP, and it sounds like you can't setup another IP for VPN backup.
If the vpn endpoint is a linux host, you can use HA failover to share a virtual IP address between 2 similarly configured hosts. IF the primary dies, the secondary assumes the virtual IP and will service requests.
http://www.linux-ha.org/
A lot of this will depend on what you are running for the VPN endpoint.
Since you can't have 2 machines share the same IP, and it sounds like you can't setup another IP for VPN backup.
If the vpn endpoint is a linux host, you can use HA failover to share a virtual IP address between 2 similarly configured hosts. IF the primary dies, the secondary assumes the virtual IP and will service requests.
http://www.linux-ha.org/
A lot of this will depend on what you are running for the VPN endpoint.
I will try setting up an internal router and setting the wan port to the IP address recognized by the clients and connect both servers to the router and see if that works. I will try that on monday.
What kind of router do you have and what client are you using. If supported, you could setup a client vpn using the router as an endpoint providing access to the entire internal subnet. That would probably require some client reconfiguration however.
The client only allows connection from the IP address of one of our servers. A permanent VPN connection is not possible. Our router says it supports vpns but I have not been able to get it to work.
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
All Courses
From novice to tech pro — start learning today.
-
Course of the Month5 days, 21 hours left to enrollMonitoring and Operating a Private Cloud with System Center 2012 R2 273 lessons
You could always look to a virtualzed solution where the server exists as a virtual host that is stored on SAN and then accessed from a front end VMWARE server. 2 Windows boxes, each running vmware server with access to a guest os on a SAN disk would provide the failover solution you are looking for without playing around with layer 3 networking.
HAve you looked at VMWARE or Virtual box or other virtualization packages?