In my network, I have a Firewall Hardware called Fortigate.
This device working as NAT device, or translator between my inside network ( LAN ) & OUR ISP Cisco Router 2801.
This device has 2 Ports:
Port ( 1 ) :-
1. Description: Connected to MY LAN.
2. IP Address: 192.168.1.100 / 24
NO GW & NO DNS on this Device.
Port ( 2 ) :-
1. Description: Connected to OUR ISP CISCO ROUTER 1841, interface F 0/1.
2. IP Address : 188.8.131.52
3. S/M : 255.255.255.248.
4.GW: 184.108.40.206---------------this is the IP Address of ISP Router, INT F 0/1.
5.DNS : 220.127.116.11 / 9
And this Device have a routing role to route every thing to 18.104.22.168 .
And on MY ISP Router, there is the following route
(ip route 0.0.0.0 0.0.0.0 22.214.171.124) .
All of my LAN users ( 200 users up to now ) , in order to access internet through this device, I have to configure them with the IP Address in the same range of the IP Address of PORT 1 .
i.e. IP---? 192.168.1.20 / 24 , GW : 192.168.1.100 , DNS : 126.96.36.199 /9.
Now for some security reasons , I need to shutdown this device and put my Cisco Router which is 1841, and configure this Router with NAT.
My 5 questions is :-
1- In order to do that, what should I do, Static NAT , or Dynamic , or PAT ?? overloading ?? ? can you Please guide me ?
I have 3 Real IP Address from my ISP, and I am using only one until now, and I need only this one IP Address to be used as real IP with those 200 Users , so guide me ?
2- I heard if I enable dynamic NAT, I have to create a one access list for each user IP, and make it Permit to Open internet for Him through my Internet Router which is Configured as NAT Router , is that correct ? if so, how can I wrote it to open only http & SMTP & FTP for only 5 users start from 192.168.1.20 up to 192.168.1.25. ?
3- what about the static route that I need to create on this router, to enable routing between interfaces ?
4- How can I configure the ROUTER with the DNS, in order to make the router configured with this DNS 188.8.131.52 ?
5- Do I need to configure the user again , or only it?s a matter of shutdown the Device, and put my router with the same configurations ?
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...