VPN using public IP as host question

Unanswered Question
Apr 18th, 2012
User Badges:

My company currently is using a /30 network, 1 public assigned to an ISP and 1 Public IP assigned to an ASA.  They also use a VPN which the peer address is the public ip assigned to the outside interface of the ASA. One of our clients is requesting to access our servers but our servers must have assigned public IP not private. I have another /27 IP range givent to me from our ISP and am wondering how I can assign a server a public IP?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
NAGISWAREN2 Sun, 04/22/2012 - 20:47
User Badges:


Two Option

First option:

Choose one the interface of ASA, make it as DMZ, assign public IP /27 to the DMZ interface, and assign another IP from /27 direct to the server. Your Server must point Default Gateway to ASA DMZ IP.

Second Option:

If let say your server currently sitting in the ASA LAN (inside), than you can achieve this by Port Forwarding or Static NAT mapping. Just choose one public IP from /27 and do Static NAT to the Private IP of the server in Cisco ASA. This will allow client access the server via Public IP, while server actually holding Private IP, and the translation done in Cisco ASA.


This Discussion