Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 2 subscribers
  • Views 523 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

QUESTION ABOUT SNAT FOR EXPERT PEOPLE!!!

marcoreale
I have a question about SNAT.
I must configure a DMZ with "ASTARO", as shown in the following scheme:

                router cisco
    (snat between PUBLIC_IP and PRIVATE_IP)
                      |
                      |
                    ASTARO
                    FIREWALL-----------DMZ
                      |                 |
                      |              WEB SRV
                      |
                      LAN

Astaro's documentation explains well how to configure SNAT in 2 steps:

1) add the required data (as public ip and private ip) in the correct menu

2) add the correct rules in the packet filter menu

The problem is that SNAT is already provided by CISCO router (as shown is the scheme) thus, I don't know what to do.
I think I should take only the second step, but I'm not sure about it.
Can anybody tell me exactley what to do?

Moreover, I haven't understood well the difference between snat and dnat. Could I configure a DNAT instead SNAT in this configuration?

Please answer to me as soon as possible.
Bye


This thread was automatically locked due to age.
  • 0
    what do you want to achive by your NAT rules, SNAT and DNAT are two different things, DNAT is normally used to map an internal server to an official IP, SNAT is mostly used to masquarade the internal used IPs.

    Cheers,
    Andy.