Re: DNAT for Internal Web Server
Is that what you call split-DNS?
From internal network, if the packet destination address is one of the public ip's assigned to external interface subnet, I need that destination address is translated into local ip of local hosted server.
Let's say we have local hosted servers with private ip:
Web Server : 192.168.1.20
DB Server : 192.168.1.10
WAN Interface has public ip 22.214.171.124 from WAN subnet 126.96.36.199/29
I defined two VIP's:
188.8.131.52 => 192.168.1.10
184.108.40.206 => 192.168.1.20
So from outside traffic into our local servers are correctly managed by Security policy with VIP.
Now from inside local station, if the client enter "http://www.mycompany.com" on Web browser, it will get 220.127.116.11 from DNS server. I want to translate that 18.104.22.168 into 192.168.1.20. Will it be done automatically if I have VIP defined? Or do I need to do split-DNS? If I need to do split-DNS, can you tell me how to?