NATing in Win2K

[arnold8]

Hi,

I've enabled routing and remote access in win2k and enabled NATing. Everything works fine with about 50 ppl connected to the the internet through the NAT Server.

However, while setting up the properties on the WAN interface of NAT, it was necessary to specify the range of Static IP addresses allocated by my ISP and its relevant subnet mask.

Now I can't use any of these real IP (for other applications such as a VPN server or a Mail server) since all are used up in the NAT settings. NAT actually uses all the 5 static IPs with a subnet mask of 255.255.255.248.

Is there any way I can configure NAT in win2k to use juz one or say 3 IPs and let the remaining be free ???

 

[GiaBetiu]

I don't really understand what were you doing.
Your NAT server needs only ONE IP address from your ISP.
Everything that is behind your NAT (in private LAN) should be NATed. So, all those PCs will have addresses from same network.
If you want an email server that is in your private network to be accesed from the Internet then you have to define an association between an ISP assigned address and its IP address.
Public Address/ Properties/ Address Pool / "define your range from your ISP".
Then click Reservations, and make the assignment.

As an observation. Take care on design of your system It seems that you didn't designed a DMZ (demilitarized zone...). Also take care about having a VPN server! What kind of VPN protocol did you choose? With NAT you can have just PPTP! and many rules about designing an interface private lan / Internet.

Gia Betiu
Computer Eng. CNE 4, CNE 5, soon MCSE2k

 

[cbbxxxd]

hey arnold8 can you please explain how you get NAT to work on the WIN2k Adv.... i've been trying to get it to work for awhile, no success.....thanks

dee

 

[arnold8]

Hello Gia,

In my WAN properties in Routoing and Remote Access, there is an Address Pool Tab where you have to specify a Start Address Subnet Mask and End address. Thats why I asked whether a single IP can be used bec here I have to specify the entire range of real IP addys allocated to me by my ISP.
Maybe I mad a mistake while configuring this the first time.
But now, NAT uses all the real IPs. When I right click on the wan interface and choose "show mappings" I can see that all the IPs are used.The other part is ok wherein I speccified a private network of 192.168.100.0

I understood the reservations part too, but I want the email server to use a real IP too. And I can't configure that bec apparently its already in use.

As for u dee, I will send you the details in an attachments since there is a procedure to follow while configuring NAT.

 

[cbbxxxd]

thanks man...
my email address is
cbbxxxd@aol.com

 

[dankelt]

arnold8, the spot you are adding your subnet is for crating static mappings to internal clients. This is used to basically give a computer that is being natted a real ip address. If you want to route an address else where, don't add it to the address pool.

Say for example you had a server that was being natted, with an internal ip address of 192.168.100.100. And you wanted a public ip address just for this server. What you would do is add that IP (or your entire subnet) to the Address Pool, then create a Reservation, mapping the private ip address to one of your public addresses.

Hope this make sense!

 

[GiaBetiu]

Arnold, as i said also, and dankelt said above, you just need to create reservations in that address pool. Gia Betiu
m.betiu@chello.nl
Computer Eng. CNE 4, CNE 5, soon MCSE2k