06-28-2011 10:55 AM
Hi All
We have a Small Business RV042 router, and have many Internet servers in our Internal and DMZ networks behind the router.
In our old GTA firewall, we were able to add IP aliases to our external (WAN) interface. That is, our WAN interface can have many IP addresses besides the main IP address, e.g., 209.118.52.226, 209.118.52.227, 209.118.52.228, 209.118.52.229, etc.
209.118.52.226 is the main IP for the WAN interface.
209.118.52.227 is for our web server 1, e.g., www.example.com
209.118.52.228 is for our web server 2, e.g. support.example.com
209.118.52.229 is for our sftp server, e.g. sftp.example.com
And then we create 'tunnels' to forward incoming traffic for 209.118.52.227 to our www.example.com residing in our DMZ or Internal network, etc.
Now, is this possible with the RV042 router? The only thing we found in RV042 is Forwarding (port range forward) but that does allow us to have IP aliases for the WAN interface. It seems that we can only route service defined traffic or port defined traffic meant for only 1 WAN IP to our internal servers behind the router.
Actually, we had bought the RVS4000 earlier and then upgraded to the RV042 hoping that it will have what we want.
If the RV042 does not have IP alias for WAN interface, what is the lowest Cisco router model that has it?
Thank you very much in anticipation.
cmgui
06-28-2011 11:44 AM
07-04-2011 04:39 PM
Thank you tekliu
Yes, 1-to-NAT can do most of what we want. But it is not able to direct only certain port traffic from the external WAN IP to the internal LAN IP?
For example, if we create a 1-to-1 NAT 192.168.41.50 =>
209.118.52.227, it basically opens all the traffic allowed in the Firewall to go from
209.118.52.227 to 192.168.168.41.50.
If we only want to allow say https, ie. tcp port 443, traffic to go from
209.118.52.227 to 192.168.41.50, it is not possible. Or is it?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide