This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Understanding question to SNAT/DNAT

Hi all,
I have here a ASL 5 with the following constellation.
3 NIC Inernal / DMZ / External (2xx.xxx.xxx/128)
In the DMZ works a Apache with some virtual servers (IP)

In the first attempt I generated corresponding virtual NIC at the external NIC (25 pcs.).
In addition I activated the following SNAT.

Any -> Virtual-Nic (Adress) -> httpd -> internal Webserver(DMZ)

The interesting is this SNAT functioned only with some (same parameter!)

With the second attempt I generate host with the external IP addresses in network definition.

With this constellation SNAT works correctly. Which wrong I make in the first attempt ?

What would here the correct way ?

thx

Stefan

This thread was automatically locked due to age.

0 SecApp over 20 years ago in reply to StefanS_01

Do a traceroute from the IP you are trying to access that; relate the results here (sanitize public IPs).

What are the network settings on the server you are trying to access? Is its gateway set to Astaro??
Cancel
Vote Up 0 Vote Down

Cancel
0 StefanS_01 over 20 years ago in reply to SecApp

The access was made by one big ISP "German Telekom".

Routenverfolgung zu www.dxxxxr-xxxd.de [217.xxx.xxx.16]  über maximal 30 Abschnit
te:

  1    75 ms    77 ms    77 ms  193.158.141.221
  2    78 ms    77 ms    77 ms  62.225.251.238
  3    78 ms    77 ms    77 ms  tr-ag1.TR.net.DTAG.DE [62.154.84.50]
  4    77 ms    77 ms    77 ms  017656-1-2-gw.TR.net.DTAG.DE [62.154.84.233]
  5    77 ms    77 ms    77 ms  www.dxxxxr-xxxxx.de.[21
7.xxx.xxx.16]

here standard gateway (my PC) of the Telekom is valid.
Cancel
Vote Up 0 Vote Down

Cancel
0 SecApp over 20 years ago in reply to StefanS_01

And that server's gateway is set to Astaro??
Have you tried pinging an Internet address from it??
Cancel
Vote Up 0 Vote Down

Cancel