HPE Community
Security e-Series
1753808 Members
8191 Online
108805 Solutions
New Discussion юеВ

NAT between internal interfaces

 
HIT_1
Occasional Contributor

тАО09-04-2009 12:13 PM

тАО09-04-2009 12:13 PM

NAT between internal interfaces

Hi guys.



I need to configure NAT between internal interfaces.

I have a network 192.168.1.0/24 and I neet translate thees IP adds to 172.16.1.0/24 in other internal interfaces.



I try the manual instruccions but...



Please, anybody knows where can I find documents with examples?



Thanks a lot.

0 Kudos
3 REPLIES 3
chrisuk
Advisor

тАО09-15-2009 08:50 AM

тАО09-15-2009 08:50 AM

Re: NAT between internal interfaces

What exactly are you trying to achieve?





0 Kudos
Rallod
New Member

тАО09-17-2009 11:32 PM

тАО09-17-2009 11:32 PM

Re: NAT between internal interfaces

Oddly, I have the same question. I have detailed mine a bit more. What I'm trying to achieve is this: I have two separate networks on two separate private-class subnets. I want to be able to communicate with one of them via the other one using NAT so as to not have to actually have my host be on the other subnet.



Specifically:

I am using the OfficeConnect Gigabit VPN Router (3CREVF100-73) to sit between two private networks. I can't seem to get the NAT to work correctly, and I'm not sure if it's a bug or not. Here goes:



LAN1 (VLAN1 interface address): 10.51.61.88/24

DMZ1 (VLAN2 interface address): 192.168.20.89/24



I want a host on LAN1 to be able to telnet to a host on DMZ1. Let's say the host on LAN1 is 10.51.61.140 and the host on DMZ1 is 192.168.20.99. On the tabs under "ACL", I have LAN-WAN, DMZ-WAN, and DMZ-LAN. Do I create an inbound or outbound ACL? The more detail you can provide the better because this isn't really working for me with general intuition (which isn't saying much hah!). I'm primarily based in a Cisco IOS environment, but this particular device needs to now interface with hosts in our network topology.



Thanks so much in advance for your help!! :)



-Kathy

0 Kudos
HIT_1
Occasional Contributor

тАО10-02-2009 11:29 AM

тАО10-02-2009 11:29 AM

Re: NAT between internal interfaces

Hi Chrisuk.



I need the next:



The firewall's Security Zonesin (SZ) are:



SZ-1:

name: CORPORATIVA

IP add: 192.168.101.0/24

IP interf type: internal



SZ-2:

name: TEMPORAL

IP add: 100.100.101.0/24

IP interf type: internal

:( yes, its a public ip subnet, buy we inherited it.



There is a router in SZ-2, and in somewhere a server that only can attend to users in 100.100.101.0/24.



I tryed to config a one-to-one NAT:

ej: 192.168.101.35 -> 100.100.101.35

but it don't works (yes, there's not a PC with the IP add 100.100.101.35 in SZ-2).



I did:

- Firewall

- Virtual Servers

- Create Virtual Server

All Services

Local IP add 192.168.101.35

Public IP add 100.100.101.35



I installed a PC with Wireshark to capture traffic in SZ-2, and ping from 192.168.101.35 to that PC, and the sourse ip add is 192.168.101.35, not 100.100.101.35.



I did a lot of tests changing that I found, but...



Please, help me.

Thank you.



0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.