This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Supplying Internet public IP

We have an Astaro utm220

We have

15 x public ip's (10 free)
1 x wan
1 x LAN
1 x DMZ

We have a request to provide 1 of our public facing ip's to a seperate office in our building.

I could create a new network interface and setup a dhcp server and provide a seperate network.

Unfortunately the client will be using their own firewall and providing their own nat, firewall rules, port forwarding etc.

Is there a way of supplying 1 x public IP as an ISP would?

No Internet filtering, no intrusion prevention. Maybe a bandwidth pool ?

Any ideas would be most grateful.

Thanks

This thread was automatically locked due to age.

Parents

0 BarryG over 12 years ago

Hi,
With a transfer network,

You'd use your assigned network (e.g. 80.1.1.1/28) in your DMZ.

You'd continue to use 192.168.1.0/24 or similar in your LAN.

The ISP would give you a new, small, network for your external interface (probably a /29 or /30).

You'd delete all your DNATs, SNATs, and MASQ for your DMZ. Keep MASQ to your EXT interface for your LAN, for internet browsing, etc. (this would be using the new External IP. It might be possible to use one of the DMZ IPs somehow though.)

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BarryG over 12 years ago

Hi,
With a transfer network,

You'd use your assigned network (e.g. 80.1.1.1/28) in your DMZ.

You'd continue to use 192.168.1.0/24 or similar in your LAN.

The ISP would give you a new, small, network for your external interface (probably a /29 or /30).

You'd delete all your DNATs, SNATs, and MASQ for your DMZ. Keep MASQ to your EXT interface for your LAN, for internet browsing, etc. (this would be using the new External IP. It might be possible to use one of the DMZ IPs somehow though.)

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data