1:1 NAT (1 to 1 NAT) problem

[djedge]

For a long time i have used ClearOS as our firewall / gateway / SBS solution, However I now want to switch to zentyal as all of our other systems / servers run ubuntu / ubuntu server.

I cannot figure out how to make 1:1 NAT (1 to 1 Nat) properly work.

I have 5 (five) public IP addresses and two of them need to NAT to internal servers.

The reason i need this is that websites hosted on my network are unreachable from the local network  because DNS does not work correctly without 1:1 NAT

For example, DNS server and web server is at public ip (for example) 10.10.10.1 and internal 192.168.0.X.

I have followed / translated the post here, ( http://forum.zentyal.org/index.php?topic=163.0) but it does not work.

Any help is appreciated.

Thank you.

[jsalamero]

Use internal DNS server to override with the internal IP the reply of external nameservers which resolve to your public IP.

[djedge]

I am not sure i understand .

Are you saying i have to setup dns entries for ALL of my domains / websites on the zentyal server?

[jsalamero]

Yes or you can create the desired NAT 1:1 using firewall hooks.

[djedge]

Hi,

Could you provide a url for creating the firewall hooks ? The links i have found with instructions do not work for me.

Thank you

-Edge

[jsalamero]

See the hooks on /etc/ebox/hooks/.