Solved

routing

Posted on 2014-12-17
17
118 Views
Last Modified: 2015-01-06
when someone says that they want to point a router to a specific PI server, or any server at that, are they talking about providing a permit access (acl) from and interface to the server or from subnets on the router to the server? or is this something else?
0
Comment
Question by:Shark Attack
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 6
  • 2
  • +1
17 Comments
 
LVL 3

Expert Comment

by:vipelite
ID: 40505964
What is a PI server? Sounds like they want to filter all traffic through the server like a proxy-server.
0
 
LVL 3

Author Comment

by:Shark Attack
ID: 40505986
its DMZ servers.

I would assume that all they want is to create ACLs permitting traffic? Or how else would I pointed from router to the server
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40505988
when someone says that they want to point a router to a specific PI server
Do you mean "IP" server?  

If so, I don't know that I've really heard it expressed like that.  Generally, routers don't "point" to a server.  They have "routes" to networks.

Can you elaborate as to what you're looking for?
0
Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

 
LVL 3

Author Comment

by:Shark Attack
ID: 40505998
I will gather more info tomorrow and clarify.
0
 
LVL 3

Expert Comment

by:vipelite
ID: 40506000
If those are DMZ servers - they want to proxy your outbound traffic that leaves the router to filter through the server. For example, web-proxy or a snort device to filter through to the internet.

Unless they are literally asking to point a router to a server connect it directly and make sure they are both on the same subnet. which I highly doubt.
0
 
LVL 3

Author Comment

by:Shark Attack
ID: 40506028
these are new dmz servers. if thats the case, this should have been configured for the old dmz servers as well. how could i check the config for that? i do know the old ips for the dmz servers. how can i check how the router is currently configured for the old dmz servers. if they're saying that thats the case then will see. any ideas?
0
 
LVL 3

Expert Comment

by:vipelite
ID: 40506032
What's the make/model of the router?
0
 
LVL 3

Author Comment

by:Shark Attack
ID: 40506036
cisco 2811 Version 12.4
0
 
LVL 3

Expert Comment

by:vipelite
ID: 40506039
sh run | s x.x.x.x
where x = old server ip
or sh run | s x.x.x
where x = old server ip instead of searching the whole ip you can search the first 3 octets.
0
 
LVL 3

Author Comment

by:Shark Attack
ID: 40506048
so there is an access list permit statement from 172.28.5.40 to the dmz server. so i guess its just a traffic permit? thats all they're talking about?
0
 
LVL 3

Expert Comment

by:vipelite
ID: 40506054
Yup, just allow the new servers to what's current.
0
 
LVL 18

Expert Comment

by:Akinsd
ID: 40506302
They are referring to static NAT (Port Forwarding)

They want you to direct (forward) a port on your router for traffic from your public IP to point to the IP address of a server
eg traffic request to 10.10.10.10:80 can be forwarded to a server with IP 192.168.1.1.
0
 
LVL 3

Author Comment

by:Shark Attack
ID: 40507466
how can i do that? I will need to do static NAT with port forwarding RDP 3389
0
 
LVL 3

Expert Comment

by:vipelite
ID: 40507578
Provide the following output:
sh run | s nat
sh run | s 172.28.5.40
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 40508180
So... what's a "PI" server?
0
 
LVL 3

Author Comment

by:Shark Attack
ID: 40508232
they have DMZ servers and on those DMZ's they had Pi servers which are some sort of data collecting/reporting application. I guess thats why PI server is, some sort of data reporting collecting app.
0
 
LVL 18

Accepted Solution

by:
Akinsd earned 500 total points
ID: 40510488
http://www.osisoft.com/software-support/products/PI_Server.aspx

Let's assume some things Your PI Server's local IP address is 192.168.1.1 and operates on port 5555
public IP address is 10.10.10.10

Your nat statement will be
ip nat inside source static tcp 192.168.1.1 5555 10.10.10.10 5555
0

Featured Post

Forrester Webinar: xMatters Delivers 261% ROI

Guest speaker Dean Davison, Forrester Principal Consultant, explains how a Fortune 500 communication company using xMatters found these results: Achieved a 261% ROI, Experienced $753,280 in net present value benefits over 3 years and Reduced MTTR by 91% for tier 1 incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question