Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Problem w/ physical layout FB700

Status
Not open for further replies.
shaman22

shaman22

IS-IT--Management
Feb 11, 2003
6
US
internet router:
WAN ip 64.54.52.x
LAN ip:10.1.1.x

router performing NAT

In a routed config would the ip of the external interface on the FB700 be a public ip if the FB700 is behind the router and if so would the LAN ip on the router be changed to a public ip to be on the same network as the external interface of the FB700.

Any help would be appreciated.
 
Sort by date Sort by votes
It depends on your ISP, but yes, generally speaking the external interface of your FB and the interface of your router facing the external interface of the FB would have externally routeable IP's and belong to the same IP block.

AM
 
Upvote 0 Downvote
would i also be able to configure it like this or would this be a routing table nightmare?
Internet router
WAN: 64.54.x.x
LAN: 192.1.10.2

FB
external 192.1.10.1
internal 10.x.x.x

or would it be easier putting the 2 interfaces on the router and the external interface on the FB on the same public IP block.
It will mostly be used for muvpn
 
Upvote 0 Downvote
Like Ashleym said, "external interface of the FB would have externally routeable IP's and belong to the same IP block".
My setup is like so:
Cisco Router IP: 88.20.30.169 (not real IP)
WG External Port: 88.20.30.170 (not real IP)
WG Trusted Port: 192.168.1.200/24

When you first setup the WG you can choose if it will be in "Drop in mode" or "Routed". Routed is like mine & Drop in would be if you have several public IP addresses. Looks like you are trying to make your WG on a private IP instead of giving it a public IP. What type of internet connection do you have? T1? Frac-T? DSL or Cable? Other?
 
Upvote 0 Downvote
we are connected to a T. I am going to configure it with the public ip's on the external interface. so let me ask you, i should put all my static NAT's on the FB and remove them from my Cisco router?
 
Upvote 0 Downvote
Yes, I believe you are correct for ROUTED cfg you would have the WG do the NAT. With DROP-IN cfg the traffic is routed through the WG with no NAT. You might be able to do NAT on the Router still but I think you would have to create routes for the internal IPs...not sure..that is a little beyond me. Hope this helps.
 
Upvote 0 Downvote
So, with that logic if you are designed with one subnet with no routing internally, would you just get rid of the cisco access router and have the WG as your external interface. I mean what would be the point of the router if you are not routing to different subnets internally.
 
Upvote 0 Downvote
My understanding is you need your Cisco to ROUTE info to your ISP and act as the GATEWAY for your WG.?!?!?!
 
Upvote 0 Downvote
that would be only if you are using the routers mac address for something, otherwise you can assign the same ip to the external interface of the wg. I am nhot sure it will work but i will try this weekend and post my results.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
285
Sameer258
Sameer258
ITSUPPORTIT
  • Locked
  • Question
VPN from ASA 5510 and RV215W problem
Replies
0
Views
78
ITSUPPORTIT
ITSUPPORTIT
wrighbr1
  • Locked
  • Question
Cisco ASA 5505 site to site VPN problem
Replies
0
Views
61
wrighbr1
wrighbr1
mattbarkerlfc
  • Locked
  • Question
Checkpoint 2200 subnet overlap problem
Replies
0
Views
76
mattbarkerlfc
mattbarkerlfc
sebd44
  • Locked
  • Question
sonicwall statistics problem
Replies
0
Views
57
sebd44
sebd44

Part and Inventory Search

Sponsor

Back
Top