Reverse NAT and portmap at the device that does you NAT for you.
Here is how you currently look:
Internal Network -----> NAT Device ------> Internet
The NAT device is capable of reverse NATing in some way, otherwise return
TCP/IP traffic
would never get to your systems.
You want to be able to do this:
Internal Network (VNC) <----- NAT/Port MAP Device <------- System on the
Internet..
I MUST caution you AGAINST doing it this way, however. When you look at it
you can see that
the traffic gets ALL the WAY INTO your internal network BEFORE it is
accepted/rejected. This is NOT
a good way to do it.
If I were you, I would set up some sort of DMZ for you VNC server. Like
this:
Internal Network -----> NAT Device <-----> Internet
|
|
|
|
-------------
| |
| DMZ/VNC |
| |
-------------
There you have it!
-James
-----Original Message-----
From: snaqi [mailto:[EMAIL PROTECTED]]
Sent: Thursday, April 18, 2002 3:23 AM
To: [EMAIL PROTECTED]
Subject: IP AND NAT
My first question is, is this possible, I have only one public IP address,
and
I am using nat to hide my internal network, and I want to connect to a
machine with vnc on that with private ip
And then run my web server and ftp server inside that
network.
So my question is how can I connect to vnc host from outside world to the
machine having private ip behind my nat.
Thanks for help in advance
Naqi
