Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
936
Views
5
Helpful
5
Replies

A NEW DESIGN

vipinrajrc
Level 3
Level 3

‎09-11-2011 11:54 PM - edited ‎03-04-2019 01:34 PM

Hi Experts,

This is a new assignment i got. right now all these devices are iin 192.168.1.0/24 network.


This network is in remote location. I may get an onsite help. Now all the devices are connected to each other in a rapid manner.
They are some how managed to provide internet to the users.

But i need to connect the network devices in the following manner

ISP router ---> 1811 router ---> 2960 switch --> IP phones
                                       ---> 3550 switch --> servers


Please see attached network diagram for my proposal.

ISP router is also in the client's permimeter and we have access to the ISP router. It is terminating a dsl account
with a dynamic public IP. This ISP router is also act as a DHCP router for internal hosts.

As i said right now they are connecting in Triangle manner. Like 1811-->2960-->3550-->1811.

And ISP router is conencted to one of the switch.

ISP router is motorola netopia3000 series. It is capable of NATing.


They have tried to connect the network devices as i said. But they lost the internet connectivity at the same moment.

This may be due the lack of default route in router, right?? I didnt try with the default route configuration.

I need to segregate like below...

ISP -- to -- 1811 -->192.168.1.0 /24

1811 -- to -- 2960 -->192.168.3.0/24

1811 -- to -- 3550 -->192.168.2.0 /24.

I have tried the same in packet tracer. In packet tracer the server in 192.168.2.0/24 range is able to ping to 192.168.1.254 which is the
of the ISP router. This is acheived by adding a static route in ISP router.

I hope everyone understand my scenario.............


My doubt is like

1) how / Where can i NAT exchange server private IP address???
Exchange serer private IP is 192.168.2.5, public IP is 105.15.11.15.
Where should I NAT for this exchange server?

2)  for giving internet access to users i need to configure only a default route in 1811 right?
    Right now they are having internet using the default gateway as ISP router.


Please suggest your valuable informations...........


Thanks
Vipin

Thanks and Regards, Vipin
Labels:
Preview file
656 KB
0 Helpful
5 Replies 5

andrew.prince
Level 10
Level 10

‎09-12-2011 12:01 AM

Answers:-

1) NAT on the 1811

2) All internal devices should have the 1811 "Inside" interface IP as their default gateway

HTH>

0 Helpful

shehinpm1
Level 1
Level 1
In response to andrew.prince

‎09-12-2011 01:45 AM

use this static nat statement for exchange

ip nat source static 192.168.2.5 102.15.11.15 .

if u want allow only port 25 and 443,then edit this command with tcp port

keep the default to IPS

0 Helpful

vipinrajrc
Level 3
Level 3
In response to shehinpm1

‎09-12-2011 07:07 PM

Hi Shehin,

Thanks for the reply.............

Is it possible to NAT in the router which is having private IP address in the outside interface????

Thanks

Vipin

Thanks and Regards, Vipin
0 Helpful

vipinrajrc
Level 3
Level 3
In response to andrew.prince

‎09-12-2011 07:06 PM

Hi Andrew,

Thanks for the reply.

Yes, ofcourse NAT is possible in 1811 router. But the problem is IP address between 1811 router and ISP router are private.

So how can i NAT??

Can i use double NAT?? I did a double portforwarding once in a checkpoint router... Will it work in the same way here???

Thanks

Vipin

Thanks and Regards, Vipin
0 Helpful

andrew.prince
Level 10
Level 10
In response to vipinrajrc

‎09-13-2011 01:36 AM

You can use nat anywhere it is no limited to public & private.

Customers Also Viewed These Support Documents