Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
385
Views
0
Helpful
2
Replies

NAT from outside to two internal email servers

lcaruso
Level 6
Level 6

‎07-09-2015 03:35 PM - edited ‎03-11-2019 11:14 PM

Hi,

I have been told one cannot do this...

 

NAT inbound from one public ip address to two separate internal email server addresses ss required for failover.

This is specifically just for OWA/https and not SMTP. 

 

Is there a NAT solution that would be applicable for this requirement?

 

 

 

Labels:
0 Helpful
2 Replies 2

Rishabh Seth
Level 7
Level 7

‎07-10-2015 08:43 AM

You can translate one public ip to two different internal ip addresses by using different port numbers for each internal server.

eg.

internal ips : 10.1.1.1 ; 10.1.1.2.

public ip : 100.1.1.1

use port 8080 to map traffic for server with ip 10.1.1.1

use port 8081 to map traffic for server with ip 10.1.1.2

translation would look like :

100.1.1.1:8080 --> 10.1.1.1:443

100.1.1.1:8081 --> 10.1.1.2:443

 

Hope it helps.

 

Thanks,

R.Seth

0 Helpful

Marius Gunnerud
VIP
VIP

‎07-11-2015 02:10 PM

Other than using two different ports as R.Seth has mentioned, you would need to put a load balancer (such as Netscaler) behind the ASA and then NAT to a VIP on the Netscaler.

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card