Recommended Posts

I have a setup that involves a service being directed at an external NAT address which I then point to one of a number of devices.

 

What I'm looking for is a way to make the NAT'ing function something users could control within a basic interface, eg a drop down menu from a web page.  So I can have an external IP going to an internal IP (reverse proxy?) that port forwards traffic to devices (that users can choose) within the LAN as per image attached.

 

I'm sure this will have been done before, does anyone know of a simple effective way to do it?

 

Many thanks

post-5871-0-74737600-1425460793.jpg

Thing is the External has to be a single static address as will the NAT'd internal address.  

I just want to be able to provide and option to an end user that allows them to select one of four destinations for the server (reverse proxy) to forward traffic to and from.

Why would users need to do this??  What are forwarding exactly, what port/protocol -- and your pointing it to a reverse proxy inside your network.. Why can the reverse proxy then send the data on to what you want.. You need to choose 4 different reverse proxies on rfc1918 space?  Why don't you put the reverse proxy on public IP?  You only have 1 public IP?  Get 3 more if you have 4 reverse proxies you need to get to from public..

 

Does this have to do with voip or sip - why do you have phones in your diagram?

 

What exactly are you trying to accomplish here, what is the problem your trying to over come with changing a port forward.. Which seems to be the wrong path if you ask me..

We have an ISDN phone number that will redirect to a single IP address over with H323.

I want users to be able to redirect that traffic as it hits my external address to 1 of 4 video conferencing rooms.

 

ie We have a call due to come in at 12:00 on the ISDN which needs to be taken in the Board Room, a receptionist can go to a drop down box and select Board Room.  

So you have multiple h323 endpoints, but you don't have a gateway?

 

If you wanted your receptionist to do this.. What is your nat device now?  No I can not think of ever hearing anyone wanting a receptionist to change where a NAT pointed too that is for sure ;)

You will need to have a number associated to each point, you should then be able to assign each room with its own number.   If it is a point to point solution you would setup through a vpn. 

 

What I have done to allow conference between sites was to have a vpn setup and have a point to point setup between offices. 

 

Other ways around it is to use services like skype, gotomeeting, or webex.  These all work very well and do not require you to forward any ports.  You can also have a number for people to call vs having them have an account. 

Lets try and go down your wrong path where the secretary changes where the port forward goes.  What device do you have now that is doing the port forward.  I doubt it has a user interface with drop downs to where a port gets forwarded, so you would have to write some user interface to it.. Does it have an API to interact with it?  Does it have cli where we could send it commands?

 

Or are you stuff with its interface - what device is it?  Since your stuck..  Lets even see if possible to interact with that device other than its gui..

 

As to stuck - that is just a cop out, tell the people involved that what they want is NOT POSSIBLE, and it has to be done another way, etc..  If your a consultant walk away.. Just because you consult does not mean you have to consult people that won't listen.

Budman states the truth.  There is another way, give all of the devices the same ip and only turn on the one that you need at the time leaving the rest off.  That would be the only other workaround, albeit a half assed one.

That would be prob best work around other than having sec change port forwards ;) But someone forgets to turn off the others, or turns theirs on and your out of luck.

I have been following this since yesterday and I am very confused.  If what you are looking for is nothing more than a sip/voip phone system then why not just go with one of the many sip/voip phone systems.  Avaya or Cisco are great examples.

This topic is now closed to further replies.
  • Posts

    • Yeah, it seemed like a bunch of 2D decal assets to me, so I didn't think it would be a huge issue to replace them. Assuming, of course, that Sony didn't just decide to settle and pay the artist instead. Do we know if that happened?
    • No worries, I wasn't pointing to your post specifically at all. I was talking in general and building upon your idea.
    • This 2TB NVMe Gen4 SSD is priced just $94 and you also get a free 64GB UHS-I memory card by Sayan Sen A few days ago, we reported on Team Group's T-FORCE G50 4TB NVMe SSD that was up for grabs at just $200 thanks to a promo coupon. Sadly, that deal has expired although you can still WD's SN8100 (Gen5) and SN7100 (Gen4) offerings as they are still running the discount. If you don't have the budget for those or are shopping for lower capacity drives then Crucial's T500 Gen4 drive discount is still live, and you can get them for just $125. And while the G50 4TB deal has expired, Team Group is now offering its 2TB model at its lowest ever price and you also get a free Micro SD card with it. The Team Group G50 is also a TLC (triple level cell) NAND flash SSD, and thus the endurance on the T-FORCE SSD is quite good, as it is rated for 1300 TBW (terabytes written) for the 2TB variant. Its MTBF, or Mean Time Between Failure, is claimed at 3,000,000 hours. The operating temperature is 0~70 C. The G50 does not have a dedicated DRAM cache (only the G50 Pro SKUs have it), but since it is based on NVMe version 1.4 which supports HMB (host memory buffer) technology; thus, the drive can use system memory for caching. In terms of performance, Team Group promises sequential read and write speeds of up to 5000 MB/s and 4500 MB/s, respectively. However, the firm does not disclose random throughput metrics. Get the Team Group G50 at the link below (deal is said to be ending in less than 10 hours): Team Group T-FORCE G50 SSD (TM8FFE002T0C129) + Team Group 64GB Elite microSDXC UHS-I U3, V30, A1, Micro SD with SD Adapter, to 100MB/s (TEAUSDX64GIV30A103): $105.99 + $12 off with promo code SSETA665 (Shipped and Sold by Newegg US) This Amazon deal is US-specific and not available in other regions unless specified. If you don't like it or want to look at more options, check out the Amazon US deals page here. Get Prime (SNAP), Prime Video, Audible Plus or Kindle / Music Unlimited. Free for 30 days. As an Amazon Associate, we earn from qualifying purchases.
    • I know what you're getting at, but Microsoft themselves have said that the Xbox Ally specifically disables a bunch of stuff from Windows to improve performance and save 2GB of memory. And that special game mode is coming to Windows 11 next year.
  • Recent Achievements

    • First Post
      Ian_ earned a badge
      First Post
    • Explorer
      JaviAl went up a rank
      Explorer
    • Reacting Well
      Cole Multipass earned a badge
      Reacting Well
    • Reacting Well
      JLP earned a badge
      Reacting Well
    • Week One Done
      Rhydderch earned a badge
      Week One Done
  • Popular Contributors

    1. 1
      +primortal
      646
    2. 2
      ATLien_0
      269
    3. 3
      Michael Scrip
      218
    4. 4
      +FloatingFatMan
      184
    5. 5
      Steven P.
      146
  • Tell a friend

    Love Neowin? Tell a friend!