Solved

multiple public ip adresses

Posted on 2012-03-16
5
562 Views
Last Modified: 2012-03-18
I have a block of 5 ip addresses ending in 17 18 19 20 21
I am using a router with dd-wrt after a cable modem
we are putting an ip phone system in the office and the phone guy is connecting the cable moden to the phone server bypassing my own router.
is there anyway i can forward public IP to an internal IP address so I can use my own network instead of having 2 sets of wires
0
Comment
Question by:yammineyammine
5 Comments
 
LVL 2

Assisted Solution

by:n4th4nr1ch
n4th4nr1ch earned 125 total points
ID: 37731343
Yes. It's called NAT and virtually every router and firewall supports it. If he's rigging it that way then of course you will have it that way. But if he will rig it through your router it should work. The thing is for voip you will probably want QoS as well.
0
 
LVL 19

Assisted Solution

by:n2fc
n2fc earned 125 total points
ID: 37731357
I presume your phone server will be using one of the five static ip addresses...

Therefore, you should hook the WAN side of your router, the phone server and the cable modem to a switch,

You can then connect the remainder of your computers to the LAN side of your router (or additional switches attached to the LAN side of the router).
0
 
LVL 25

Accepted Solution

by:
Fred Marshall earned 125 total points
ID: 37731629
I agree with n2fc.  Somehow you have to figure out how you are going to get access to your block of public IP addresses. Here is one example:

The cable modem will have a public IP address that is one of your 5 addresses.  Connect it to a switch.  Connect all the other *publicly-addressed* devices to that switch.  Manually configure those devices with the public address that you want.

But your real issue is the wires, right?  
I don't know what kind of server the telephone system is providing you.  With highly secure VPN devices I allow them to bypass my "normal" internet firewall/gateway and connect from the internet to the LAN.  If the device can be trusted to block all but certain traffic then that may work for you.  But the "inside" addresses of the phone system will have to be on your LAN.

Another notion:
Most switches, etc. don't care what the subnet addresses are.  This means you can run multiple subnets over the same copper.  In my case I have this kind of setup:
ISP connection <> "Internet switch" <> Firewall and VPN devices <> "LAN Switch" .....
And, for example, when I have guests who are mostly trusted but I don't want to put them on the normal LAN, I add an internet router up there where it says "Firewall and VPN Devices" and give them their own LAN subnet which uses the "LAN Switch" and all the same copper and switches in the building.
So, if it makes sense the telephone LAN could be on a different subnet and still connect via the "LAN Switch" and following copper.  Eventually of course the phones have to have their own cables but maybe no different than any device/computer, etc.
0
 
LVL 5

Expert Comment

by:andrew1812
ID: 37731927
Static NAT - 1 one 1 mapping should solve your purpose
0
 
LVL 76

Assisted Solution

by:arnold
arnold earned 125 total points
ID: 37733493
You have to make sure your cable modem is not NATing but rather passing the public IPs to your dd-wrt.
You would then have to configure your dd-wrt router to use static ips, and then use the networking tab under the setup to handle the public IPs on the one hand and then in the nat/qos section deal with passing traffic from the public IP to the LAN ip using 1 to 1 nat or port base
i.e. request on Ip port x forward to lan IP port Y
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
This subject  of securing wireless devices conjures up visions of your PC or mobile phone connecting to the Internet through some hotspot at Starbucks. But it is so much more than that. Let’s look at the facts: devices#sthash.eoFY7dic.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now