06-25-2012 04:28 AM - edited 03-04-2019 04:46 PM
We are a small service provider, hosting service etc, we acquired a range of /24 public addresses from our ISP which so far have been used for web servers, I have come accross some 3rd parties who use globally unique ip address on both pulic and private side of the network.
If I route global address on private network how will NAT work when they need to access the internet?
06-25-2012 07:51 AM
you will need to break your /24 is small subnet.
Then you can route some portion internally.
Regarding NAT, either you can do NAT Exempt, so that traffic go with out NAT and since IP are already public so no issues.
or again on your Firewall you can do static identity NAT.
06-28-2012 02:45 AM
I need to route major portion of subnet internally
diagram attached, can I brreak /24 into small subnet for firewall interface say 213.249.128.2/29, if I route rest internally then I need a route on firewall to say 213.249.128.x is inside, how will route out work if the route is pointing to next hop
internal?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide