Solved

One-to-One NAT with different subnet on Sonicwall

Posted on 2010-08-25
5
926 Views
Last Modified: 2012-05-10
Just picked up a client with a bonded T1 through Time Warner and have run into a configuration that I didn't know was possible, just wanted to find out why or how this is possible.

Firewall is a Sonicwall Pro 2040.

Their primary external IP is (changed) 72.201.205.172 with a /30 subnet, with an internal NAT 10.24.1.0/24.

There are also one-to-one NAT entries for several servers. Their external IPs are 205.75.34.146-151. And the entries work.

Should this be possible? Is this something that the ISP has to set up to be possible? Is there a good overview of one-to-one NAT that I could read to understand what's going on?
0
Comment
Question by:mindIT
  • 2
  • 2
5 Comments
 
LVL 4

Assisted Solution

by:Dave773
Dave773 earned 167 total points
ID: 33524403
It sounds like the customer owns their own address space which is getting routed through their TW connection.
If you check ARINs website, you should see that they own the addresses falling in the 205.75.34.146-151 space. Just put one of their IPs in this tool:
http://ws.arin.net/whois
0
 
LVL 8

Assisted Solution

by:jimmyray7
jimmyray7 earned 167 total points
ID: 33524541
That is completely do-able.  Here is the doc on 1 to 1 NAT - http://www.sonicwall.com/us/support/2134_3150.html
0
 
LVL 33

Accepted Solution

by:
digitap earned 166 total points
ID: 33525343
Go to Network > Interfaces.  Look to see if there is a secondary set of public IP address configured for the WAN interface.  Or, they have a secondary Internet connection and that will show up under Network > Interfaces.Another possiblility is the ISP has a different set of public IP addresses and they are routing those to your primary gateway (WAN interface IP address).Or, your situation sounds similar to this question:http://www.experts-exchange.com/Networking/Broadband/ISPs/Q_26376977.html?sfQueryTermInfo=1+10+30+digitap+isp+sonicwal
0
 
LVL 8

Expert Comment

by:jimmyray7
ID: 33525476
The WAN Interface will only show the primary IP and subnet.  In order to see any other networks on an interface, view the ARP entries to see if another network range has been attached to the X1 interface.  (sub interfaces, like vlans, will show on the interfaces page)
0
 
LVL 33

Expert Comment

by:digitap
ID: 33558956
Thanks for the points!
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Hello to you all, I hear of many people congratulate AWS (Amazon Web Services) on how easy it is to spin up and create new EC2 (Elastic Compute Cloud) instances, but then fail and struggle to connect to them using simple tools such as SSH (Secure…
Configuring network clients can be a chore, especially if there are a large number of them or a lot of itinerant users.  DHCP dynamically manages this process, much to the relief of users and administrators alike!
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now