Snat behind BOVPN
Good morning, I have this problem. I have an FTP server with an ip 192.168.2.x that needs to be transferred to a new infrastructure, The new infrastructure obviously has different ips 172.17.1.x and is currently reachable from the 92.18.2.x network via BOVPN. If I move the FTP server to the new infrastructure, it will obviously change the ip to the new 172.17.1.x network, but for some time, the server must be able to receive connections from outside on the wan connected to the 192 network firewall. If I create a snat rule from Fw1 wan to 172.17.1.x server it probably works, but if that server has to respond to the request it should do so as if it were in the 192.1682.x network vice versa the FW of the new network would exit with a different ip and would not be instated to the Fw of the 192 network. Any ideas on how to get started? Thank you Luciano
Comments
Devices on the 192.168.2.x subnet will try to connect to any other device on the 192.168.2.x subnet directly, and will never send packets to their default gateway (the firewall etc.) for that subnet, so there is no way to have devices on the 192.168.2.x subnet to connect to the 172.17.1.x FTP server by using its old 192.168.2.x IP addr.
Hi Bruce, I was able to solve the problem. I added a static nat, entering the ip address of the wan, then flags on set source ip 192.168.2.x and as host 172.17.1.x. With this setting from the outside I can reach my FTP server. I think I misformulated the question... Thanks anyway I often read your comments