Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17


One-to-One NAT with different subnet on Sonicwall

Posted on 2010-08-25
Medium Priority
Last Modified: 2012-05-10
Just picked up a client with a bonded T1 through Time Warner and have run into a configuration that I didn't know was possible, just wanted to find out why or how this is possible.

Firewall is a Sonicwall Pro 2040.

Their primary external IP is (changed) with a /30 subnet, with an internal NAT

There are also one-to-one NAT entries for several servers. Their external IPs are And the entries work.

Should this be possible? Is this something that the ISP has to set up to be possible? Is there a good overview of one-to-one NAT that I could read to understand what's going on?
Question by:mindIT
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2

Assisted Solution

Dave773 earned 668 total points
ID: 33524403
It sounds like the customer owns their own address space which is getting routed through their TW connection.
If you check ARINs website, you should see that they own the addresses falling in the space. Just put one of their IPs in this tool:

Assisted Solution

jimmyray7 earned 668 total points
ID: 33524541
That is completely do-able.  Here is the doc on 1 to 1 NAT - http://www.sonicwall.com/us/support/2134_3150.html
LVL 33

Accepted Solution

digitap earned 664 total points
ID: 33525343
Go to Network > Interfaces.  Look to see if there is a secondary set of public IP address configured for the WAN interface.  Or, they have a secondary Internet connection and that will show up under Network > Interfaces.Another possiblility is the ISP has a different set of public IP addresses and they are routing those to your primary gateway (WAN interface IP address).Or, your situation sounds similar to this question:http://www.experts-exchange.com/Networking/Broadband/ISPs/Q_26376977.html?sfQueryTermInfo=1+10+30+digitap+isp+sonicwal

Expert Comment

ID: 33525476
The WAN Interface will only show the primary IP and subnet.  In order to see any other networks on an interface, view the ARP entries to see if another network range has been attached to the X1 interface.  (sub interfaces, like vlans, will show on the interfaces page)
LVL 33

Expert Comment

ID: 33558956
Thanks for the points!

Featured Post

New benefit for Premium Members - Upgrade now!

Ready to get started with anonymous questions today? It's easy! Learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question