|
|||
Private connection class problem
Hello
It is possible NAT outgoing connection with address from the internal card ? Cause address on external interface and gateway is from private class and I would like to assign whole public class to the internal interface .. Or can I force to make connection on router from address on internal interface? Thanks! |
|
|||
No. Even if this was possible, you would be exposing an address which is no longer part of the segment where it is attached. What is you concerns about the external interface being an RFC1918 address?
|
|
|||
Quote:
Thanks |
|
|||
If the outside interface is a private RFC1918 address, it simply means that you are working within a larger internal network. As such, you do not have any control over what the legitimate external address may be; it has to work as a proper member of the segment in which it exists. If you change your external interface's IP address:
|
|
|||
Hi
I know why my ISP gives me private connection class to his BGP router and what does it mean. I am wondering if it is possible to go outside with public address which is assigned to internal interface ? Thanks |
|
|||
This all depends upon the routing put in place by your ISP. You will have to ask this question to them.
|
|
|||
Hello
Ocicat, thse IP's from internal interface are public address and are routable. User on LAN can use this address to work on internet. But can I use address of internal interface to go outiside when i want to make connection from router ? Lets say i am use ssh on router, and i if i have on external interface private connection address i cannot go outside. It is possible to make NAT or something to change the private connection address to one on internal interface from public class which is routable and has connection with outside (internet) ? Thanks |
|
|||
From your description thus far, it is unclear whether there is another route your public addressed hosts can take to reach the Internet, or whether all hosts in this segment of public addresses have to traverse this NAT'ed interface mentioned at the beginning of this thread. I suspect that this private addressed parent segment is later NAT'ed to the public Internet & that you do not need to worry about the fact that your firewall's external address is a RFC1918 private address. But this is simply conjecture on my part.
It is also unclear whether these public addressed hosts are sanctioned public addresses or whether someone arbitrarily decided to use these addresses deep down within a private network. The question here is whether these addresses will collide with other hosts using the same addresses in the wild. In any event, it sounds like this is a complex corporate network where portions are connected to other portions (possibly through acquistions) through BGP. Neither am I familiar with your network structure nor all of the idiosyncrasies of BGP to fully answer your questions. What is clear is that this is not a simple topology, & that working with the thought of "all public addresses should be publicly accessible" may be an oversimplification. In order for you to understand the interconnections, it appears there are two choices:
|
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
HostV's virtual private servers go very private | J65nko | News | 0 | 10th February 2010 05:17 AM |
Freebsd router PPP/PPPoE connection problem | mrthomas | FreeBSD General | 4 | 1st January 2010 10:36 PM |
MySQL / Dovecot connection problem | DrKrall | FreeBSD Ports and Packages | 2 | 12th July 2009 06:40 PM |
Samba 3.0 problem to setting up private folder - FreeBSD 71-pre | bsduser | FreeBSD General | 7 | 27th September 2008 03:34 PM |
Going to my First Solaris Class | roundkat | Solaris | 9 | 6th May 2008 02:23 AM |