Server IP (Source address translated) configuration advice

Started by sodalist, April 23, 2012, 04:15:26 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

sodalist

April 23, 2012, 04:15:26 PM
What would be advised way to handle server to agent connection in case that server address
is source ip network address translated and translated IP is chosen dynamically from pool of
ip addresses. (static translation is not possible, not technical reason)

Practically:
SERVER (ip a.a.a.a/24) <-> SNAT (pool b.b.b.b/26) <- VPN -> agent (ip c.c.c.c/24)

Server translated address at time of connection could be b.b.b.1-b.b.b.127.

Solutions  (parameters Servers =, ControlServers =, MasterServers =)
* define all possible ip address in Servers = ...
* create dns A record with all possible ip addressees and use dns name as parameter value
* create feature request for parameters to accept CIDR notation

Possible solution:
* create feature request to add logic to client:
   if none of  Servers =, ControlServers =, MasterServers =  are defined
   and required authentication+encryption is configured
   allow configuration value 0.0.0.0
   as Servers =, ControlServers =, MasterServers = parameter value.
 
thank you,

Ales

Victor Kirhenshtein

#1
May 03, 2012, 01:30:52 PM
Hi!

Currently the only working solution is to list all possible server's IP addresses in MasterServers. Using DNS name will not work because agent do name resolution only once at startup. I'll add feature request for supporting subnets in form xxx.xxx.xxx.xxx/nn in *Servers parameters.

Best regards,
Victor
Print
Go Up Pages1
User actions