• February 24, 2025, 01:08:59 AM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: DFL-260 with Multiple WAN IP Addresses  (Read 7559 times)

dthompson101

  • Level 1 Member
  • *
  • Posts: 1
DFL-260 with Multiple WAN IP Addresses
« on: October 24, 2010, 05:33:57 AM »
Hi all,

I am new to D-LINK product so please be kind. I just picked up a DFL-260 and am in the midst of setting it up. I have my LAN and DMZ subnets all setup properly I believe and even have it so that router makes the connection over PPPoE no problem.

My issue is that I have 5 status IP's from my ISP and I am not sure how to route them to the DMZ.

How it used to work before is as follows:

IP 1.1.1.10 --> WAN Interface (PPPoE Connection)
IP 1.1.1.11 --> Static 1 - 1 map (pat) to internal server address (172.2.2.11)
IP 1.1.1.12 --> Static 1 - 1 map (pat) to internal server address (172.2.2.12)
IP 1.1.1.13 --> Static 1 - 1 map (pat) to internal server address (172.2.2.13)
IP 1.1.1.14 --> Static 1 - 1 map (pat) to internal server address (172.2.2.14)

What I would like to do now is that as opposed to having these WAN IP addresses having all their ports forwarded and running ipfw on my internal servers, I would like to have them natted instead to the server now sitting on the DMZ on the edge of the network.

So for instance, I would like to have the following:
IP 1.1.1.10 --> WAN Interface (PPPoE Connection)
IP 1.1.1.11 --> Port 22 + 53 natted to DMZ Server sitting at 172.2.2.11
IP 1.1.1.12 --> Port 22 + 53 natted to DMZ Server sitting at 172.2.2.12
......

For the life of me however, I cant seem to figure out how to get this DFL-260 to recognize the other 4 WAN IP addresses from my ISP. I have added them into the AddressBook --> Interface Addresses along with the servers which live in my DMZ zone, but I can't seem to get it to NAT through.

I see that these are also un-numbered on the router. Do I need to also set these up with my WAN IP's from the ISP?

 wan_ip    0.0.0.0         IPAddress of interface wan
 wan_phys_ip    0.0.0.0         IP address of interface wan_phys
 wan_physnet    0.0.0.0         Network on interface wan_phys
 wannet    0.0.0.0/0         The network on interface wan



Any help is greatly appreciated from anyone who knows how to do this. I have used a $50.00 netopia router for over 7 years and I was able to do 1-1 pats in about 2 minutes, but this device, while it does a lot more, has got me spinning in circles as I am either missing something or it can't do what I need it to do.

Thanks!!
Logged

silver_surfer30

  • Level 3 Member
  • ***
  • Posts: 107
Re: DFL-260 with Multiple WAN IP Addresses
« Reply #1 on: November 16, 2010, 06:21:54 AM »
2 solutions :

first :
Create objects for each public IP then in the menu Interfaces/ARP make a publish of the public IP you want to the correct wan interface without specifying any mac.

Do it as many as you have public IPS.

Then during the forward the rules should be like:

wan1/all-nets - wan1/publicIP1  SAT  then the service to use and in the sat tab the private IP  of the server
wan1/all-nets - wan1/publicIP1  NAT  then the service to use


Second:
create the corrects objects for all your public IPS
on the routing /routing table/ main   add a new route like this:

interface will be core
network  your public IP
in the proxy ARP tab select the correct interface you want to publish the IP on.

the IP rules will be like above except the destination will be core/publicIP1 on sat and nat rules.

Logged