Hi Experts!
I currently have a Juniper SSG5 with FW 6.3. I have a working setup for external access for mail, HTTP/S, RDP etc through a single external untrust IP. I need to add a new internal server for HTTP/S access. My ISP has assigned us two static IPs. We currently only use one. Can I use the SSG5 for our 2nd IP (maybe ethernet0/1) and assign it the second static external IP and forward HTTP/S (80/443) through to the existing trust zone interface (same internal network) and onto the new server? If so, how?
This will allow you to point it to an internal IP address and using a policy specify what kind of traffic you want to allow to reach your server.
The outbound traffic from the server will show as the 2nd static IP which is very good for email servers or other services where the source IP is important.
Here is the KB article with step by step for configuring a MIP: http://kb.juniper.net/InfoCenter/index?page=content&id=KB10923