Re: Masquerading private LAN to private ip
- From: Paul Colquhoun <postmaster@xxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 31 Dec 2007 03:39:04 GMT
On Sun, 30 Dec 2007 19:18:49 -0800 (PST), entpneur@xxxxxxxxx <entpneur@xxxxxxxxx> wrote:
| I'm helping out to setup the Internet access for a local school.
| I've found out that the ISP is providing private IPs to the school,
| the info is as follow:
|
| ip range: 10.145.0.1 - 10.145.0.62
| mask: 255.255.255.192
|
| The school has about 200+ computers with only max 62 usable address,
| so I tried to setup a NAT router to masquerade the local LAN
| (10.145.8.0/255.255.254.0) to one of the provided IP. Theoretically,
| this should work, but it is not.
|
| My question is:
|
| Can I masquerade the entire LAN in private IPs to a private IP which
| belong to the ISP?
|
| 10.145.8.0/255.255.254.0 -----> 10.145.0.1 ----->
| ISP -----> Intenet
| School LAN (in private IPs) ISP's private IP
| most probably ISP masquerade to Internet
There is nothing I know about that would stop this working in theory. In
practice, I wouldn't use the 10.0.0.0/8 network for the internal/local
network.
If there are 200+ local computers, I'd use part of the 172.16.0.0/12
block (172.16.0.0 - 172.31.255.255), or the 192.168.0.0/16 block
(192.168.0.0 - 192.168.255.255). This makes it obvious what part of
the network an IP address belongs to, and make writing any firewall
rules easier (or at least makes typos less likely and less dangerous).
--
Reverend Paul Colquhoun, ULC. http://andor.dropbear.id.au/~paulcol
Asking for technical help in newsgroups? Read this first:
http://catb.org/~esr/faqs/smart-questions.html#intro
.
- References:
- Masquerading private LAN to private ip
- From: entpneur
- Masquerading private LAN to private ip
- Prev by Date: Earn online free
- Next by Date: Re: Wireless Woe - Please Help
- Previous by thread: Masquerading private LAN to private ip
- Next by thread: Earn online free
- Index(es):
Relevant Pages
|
