Understanding how our ISP's directs/routes a 2nd block of IP addresses at our firewall

Posted on 2014-08-12
Medium Priority
Last Modified: 2016-11-23
I recently helped a consultant change out our firewall. We recently moved to a Dell Sonicwall NSA2600.  One of the steps in putting the new firewall in place was configuring the WAN interface the same way it was on the old firewall WAN interface, no surprise there.  With the exceptions of altering some access rules on the new appliance we aren't really have any issues so all is good there.  What I did come to realize is that we have two separate blocks of public IP address or better I should say two blocks of non-contiguous Public IP's.  I'm somewhat new to my company and never game detail attention to all the public IP's so I figured I would use this IP Range finder  and discovered there where two blocks - http://www.csgnetwork.com/ipinfocalc.html.

My question is in that we have the first block that we had assigned to us configured on the WAN interface however nowhere in the firewalls did we have configuration for the 2nd block however it works. Those IP's are used in our Firewall rules and traffic gets into the services we allowed via access rules.    I called the ISP and tried to get some more information on how it works but the tech could tell me that when he logs in our (ISP provided) router/modem he can see the blocks of IP's.   So it's obvious that the ISP is doing something on their end to route traffic to those IP's on their end.  I'm just amazed that we didn't have to specify that 2nd block of public IP's on the existing or another WAN interface on the SonicWall.  Does anyone know how this is working? also what the ISP is doing to direct traffic to those IP's?    I'm sure many people have the same scenario, I'm just looking for a fair understanding because right now I have not clue how to remotely explain how this works.

Thanks EE community!
Question by:sugadmin
1 Comment
LVL 20

Accepted Solution

carlmd earned 2000 total points
ID: 40255612
This is done in the ISP gateway, routing both ranges of addresses to the one you have configured.

Typically the ISP would do this for you.

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is in response to a question (http://www.experts-exchange.com/Networking/Network_Management/Network_Analysis/Q_28230497.html) here at Experts Exchange. The Original Poster (OP) requires a utility that will accept a list of IP addresses …
I'm a big fan of Windows' offline folder caching and have used it on my laptops for over a decade.  One thing I don't like about it, however, is how difficult Microsoft has made it for the cache to be moved out of the Windows folder.  Here's how to …
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question