ScreenOS Firewalls (NOT SRX)
ScreenOS Firewalls (NOT SRX)

How to use 1 public IP for 2 servers in different ports?

‎03-20-2014 02:22 PM

Hi Guys,

 

We currently have MIP setup (123.456.789.1 to 10.10.1.37). Now, we would like to use the same public IP (123.456.789.1) to access another server on a different port. So in short we would like to have this below setup.

 

123.456.789.1:80 should go to 10.10.1.37

123.456.789.1:443 should go to 10.10.1.11

 

Do we need to break the MIP and use VIP instead? Please advise.

 

Thanks!

 

Arnel

2 REPLIES 2
ScreenOS Firewalls (NOT SRX)
Solution
Accepted by topic author Noctis0791
‎08-26-2015 01:27 AM

Re: How to use 1 public IP for 2 servers in different ports?

‎03-21-2014 02:32 PM

A MIP can only map ip addresses one-to-one.  So you will need to remove the MIP.

 

You can use VIP or policy destination NAT to split the address between multiple internal servers.

 

You might find KB 11910 helpful.  This runs through a series of questions about your situation and then ends with recommendations on specific configuration KB articles based on your answers.

 

http://kb.juniper.net/InfoCenter/index?page=content&id=KB11910

Steve Puluka BSEET - Juniper Ambassador
IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
http://puluka.com/home
ScreenOS Firewalls (NOT SRX)

Re: How to use 1 public IP for 2 servers in different ports?

‎03-25-2014 06:09 AM

Yes, Ive been to this article as well. Its very helpful. Smiley Happy Thanks Steve!

 

Arnel