NAT

p.holley · ‎09-24-2004

Hi All,

I have a web sever(with NetBIOS name Web) on the DMZ, that outside users can reach on http://www.webserver.bm (@ outside IP 67.80.140.129). This works fine.

What I am trying to acheive is to have inside users (@ network 10.0.0.0/24) to reach the web server by typing in the same URL http://www.webserver.bm.

The problem is that www.webserver.bm resolves to the outside IP 69.80.140.129, and not to the inside IP 10.0.0.1 of the web server. Users can type the NetBIOS name Web on the URL, and get to the server fine, but they want a universal URL to reach the server both from the outside and inside to be www.webserver.bm.

I may have to do some DNS changes, or some NAT, but not certain how to go about this.

Any ideas will be very much appreciated.

Thanks

jzsides · ‎09-24-2004

alias (inside) 10.0.0.1 69.80.140.129 255.255.255.255

sysopt noproxyarp inside

This should change the DNS A replies to the correct address.

I am assuming your Web server is on the inside interface. Your first line says it's in the DMZ, but you list the web server's ip as 10.0.0.1 which is in the same subnet you list for the inside network.

p.holley · ‎09-24-2004

Typo Error. The Web server is in the DMZ with ip 10.10.0.1. I am assuming the command then to acheive my desired result is

alias(dmz) 10.10.0.1 69.80.140.129 255.255.255.255

sysopt noproxyarp inside

Is this correct?

jzsides · ‎09-24-2004

No it still goes on the inside interface. You should not have to disable proxy arp.

p.holley · ‎09-24-2004

OK. Thanks. Will give it a try.