02-07-2018 04:01 PM - edited 02-21-2020 07:18 AM
Dear Support,
Customer is asking to hide their proxy public ip address (say 1.1.1.1), and see if its possible to translate this public ip address to 32 different public ip address evenly. The purpose to do that is that in certain country, there is rate limiting base on the source ip address in the telco cloud. So customer want to translate this one public ip address to 32 different public ip address which share the load.
We only care about outbound traffic only, since the purpose is only for internet browsing.
We tested the NAT feature, however the translated ip always choose the same one base on the source ip address only coming from 1.1.1.1.
Do you think is any workaround we can think of to achieve this goal?
Thanks for your time.
02-07-2018 05:58 PM
If you have a load balancer you might be able to use that.
02-07-2018 06:19 PM
Give the proxy a private IP address and then simply NAT it into a pool using a router or firewall.
Note that many web services actually break when the IP address you use to access them suddenly changes. So have an expectation for things like video streaming and the like to be unreliable.
02-07-2018 10:10 PM
Hello,
The closest ASA can offer is 'round-robin' approach:
https://www.cisco.com/c/en/us/td/docs/security/asa/asa-command-reference/I-R/cmdref2/n.html
Please check it out.
-
HTH
AJ
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide