Re: trouble with dynamic IP and dyndns host

In the message
<9eceb23f-d8ab-4c27-8e08-3e032f2a2ceb@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
mcseven@xxxxxxxxx wrote:

| Hi folks,
|
| I'm aving some trouble with my dialup connection. Scenario as follows:
| Router PIX501 with os 3.7
| DynDNS hostname: myhost.dyndns.org
| WAN IP: be it 81.82.40.31 (dynamic)
| Internal Server IP: 10.0.0.1 (hosts all the required services, mail,
| http, etc)
| PAT: enabled
| Static: Rules enabled, Firewall configured.
|
| From outside interface I can access all the services with no trouble.
|
| What I need now is that a client storing the hostname
| "myhost.dyndns.org"
| I.E. as POP3 server, be redirected to 10.0.0.1; since I cannot
| configure my
| DNS server accordingly (don't want to copy the whole "org" zone and
| replace
| only one host entry), is there any way to configure the pix in such a
| way
| that if there is a request from Interface inside to interface outside
| IP (=WAN)
| address, it redirects the traffic to interface inside and IP 10.0.0.1?
|
| I.e. entering the ping command will give "pinging host
| myhost.dyndns.org
| [81.82.40.31]" but will then of course fail.
|
| I've seen this behaviour with some netgear consumer routers, which of
| course are newer products, but one can hope...

With a static outside address you could use the alias command
http://www.cisco.com/warp/public/110/alias.html or bidirectional NAT
http://blogs.interfacett.com/mike-storm/2006/6/29/bidirectional-nat-on-a-cisco-pix-or-asa.html
Perhaps you can set a dns server value in your PIX and set bidirectional
NAT using a FCDN instead of a IP address (since the IP address is
changing). I haven't tried this so I don't know if it will work.

A much simpler solution would be to create a zone in your DNS server
named dyndns.org, and create an "A" record called "myhost" and IP
address 10.0.0.1.
.

Relevant Pages

  • SBS2K3 and 2003 term server problem since SP1 upgrade
    ... DNS server - configured to forward to ISP's DNS servers ... Router in remote office configured with VPN to router in main office ... I have checked that the internal interface is listed first under ...
    (microsoft.public.windows.server.sbs)
  • trouble with dynamic IP and dyndns host
    ... Router PIX501 with os 3.7 ... DynDNS hostname: myhost.dyndns.org ... Internal Server IP: 10.0.0.1 (hosts all the required services, mail, ... that if there is a request from Interface inside to interface outside ...
    (comp.dcom.sys.cisco)
  • [Full-Disclosure] FW: Cisco Vulnerability forensic protocol analysis results.
    ... AMILABS CISCO IP PROTOCOL EXPLOIT TESTING RESULTS ... Cisco router interfaces using either all or one of the following IP ... of a remote Cisco interface uses all of them. ... output buffer failures, 0 output buffers swapped out Router4# ...
    (Full-Disclosure)
  • Re: Changing the Default Gateway
    ... I agree that I can't see how the WAN side of the router would have anything ... is saying that the folks changed the internal LAN IP of the router to .222. ... this new MPLS internet connetion and phase out the Frame router. ... All tests passed on this DNS server ...
    (microsoft.public.windows.server.sbs)
  • Re: Site-to-Site VPN client routing question - clients at branch office not able to acce
    ... I would recommend that you use some other machine as your router, ... select the demand-dial interface from the dropdown list. ... On the RRAS server in Shanghai, configure a demand-dial interface and give it a static route to 194.1.1.0/24 as above. ... This makes sure that the connection is made to the correct dd interface and sets up the correct route back to Shanghai through the VPN link. ...
    (microsoft.public.windows.server.networking)
Loading