Hi,
We have a ASL box with the next configuration
DMZ2
|
|.....Corporate LAN
|....|
|....|
--ASL------Internet
|
|
|DMZ1
I'm trying to configure SNAT to make the DMZ1 and DMZ2 hosts present in internet. All the machines has a private IP address and a public IP in the ASL to make the SNAT
DMZ1 192.168.70.1/24
DMZ2 192.168.71.1/24
Corporate LAN xx.xx.xx.xx/22
In the interface of the corporate LAN, I add the public ip of the servers as an additional IP of the interface (This ip are from the xx.xx.xx.xx corporate LAN).
Then, in the NAT/Masquerading i make the next translations
Any to Public IP of xx.xx.xx.xx ->Any to private IP of DMZ1 or DMZ2
Private IP of DMZ 1 or DMZ2 to any->Public ip of xx.xx.xx.xx to any
This for each of the server. My problem is that i see that sometimes this configuration is ok, sometimes no. I can't reproduce the problem. Now, for example, its running the SNAT that permite me to access the ip public (and convert the traffic to the private address). But if i want to access my corporate lan from the server in the DMZ, the SNAT its not running. I need a full SNAT map. From clients to the server, and from the server to clients.
I think that something strange is happenig in the ASL box, but i don't know. The same configuration runs during 1 hour, i delete the interface, create again all the same exactly configuration, and only runs in one way (From the clients to the server)
Has any idea? [;)]
Best regards
Jose
This thread was automatically locked due to age.
