Solved

Redirect a hard coded IP address

Posted on 2011-02-16
12
1,134 Views
Last Modified: 2012-05-11
I posted this over at the sonicwall forums but I'm not getting any response.

I have a device on my network running an application that must talk to another server. When the app was written the IP address it talks to was hard coded in. That address has since changed and the app doesn't work anymore.

We have a new development team working on it but the new app won't be ready for months. In the mean time I would like to redirect this traffic some how.

The server is behind a sonicwall tz210 and the IP I want to redirect it to is also behind a sonicwall, an NSA240.

Is there some way to have the tz210 grab this IP and redirect it to the nsa240?
0
Comment
Question by:AJNS
12 Comments
 
LVL 3

Expert Comment

by:Rick_at_ptscinti
ID: 34909915
The short answer is yes, you can do that with NAT.  What happened to the old address?  It might be easier to assign a secondary IP address to the server so it will listen on the old address as well as the new one.
0
 
LVL 6

Accepted Solution

by:
caskrist earned 250 total points
ID: 34909926
Maybe with NAT policies, never tried this before.

Source original : firewalled subnets
Source translated: X1 IP

Destination original:  (the hard coded ip)
destination translated: (the new ip)

Service original: (try to add the service or choose any)
Service translated: original

interface inbound: any (not sure about this one)
interface outbound: any (not sure about his onne either)

Not sure, but you can try it.

0
 

Author Comment

by:AJNS
ID: 34910279
the IP address it is trying to reach is actually a live IP on the internet that used to belong to the wan interface on a firewall. That is no longer our IP, it stayed with a hosting company.

Do you think NAT will get me out one firewall and back in the other?
0
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

 
LVL 3

Expert Comment

by:Rick_at_ptscinti
ID: 34910525
NAT is not going to do you any good if you don't have access to the IP address anymore.  NAT will convert address from an outside port to an inside port (or any variation like that) but you have to have an interface that is "listening" for that address.  The issue you've got is that even if you configured that address on your public interface the carrier isn't routing that address to your premise so the traffic would never get there.

So did you have the public address configured directly on the server?  If so, then you could create that address as a secondary address on the LAN interface of your router.  You could then NAT a different public address that appears on the public side of your router now to the old address.  That should work for you.
0
 
LVL 6

Assisted Solution

by:caskrist
caskrist earned 250 total points
ID: 34914119
When the NAT policy is used on the 'sending' firewall, the traffic is redirected to the new ip address. The receiving firewall accepts that traffic.
0
 
LVL 6

Expert Comment

by:caskrist
ID: 34934256
Sure this method works
0
 
LVL 6

Expert Comment

by:caskrist
ID: 34934268
I've used this outbound NAT policy to redirect traffic to SMTP-servers, not exactly this setup, but close.
0
 
LVL 6

Expert Comment

by:caskrist
ID: 34935969
Objection!

3) Accept one or more Expert posts as the answer

http:#34909926
0
 
LVL 1

Expert Comment

by:Vee_Mod
ID: 35067620
All,
 
Following an 'Objection' by caskrist (at http://www.experts-exchange.com/Q_26833797.html) to the intended closure of this question, it has been reviewed by at least one Moderator and is being closed as recommended by the Expert.
 
At this point I am going to re-start the auto-close procedure.
 
Thank you,
 
Vee_Mod
Community Support Moderator
0

Featured Post

Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question