What would be advised way to handle server to agent connection in case that server address
is source ip network address translated and translated IP is chosen dynamically from pool of
ip addresses. (static translation is not possible, not technical reason)
Practically:
SERVER (ip a.a.a.a/24) <-> SNAT (pool b.b.b.b/26) <- VPN -> agent (ip c.c.c.c/24)
Server translated address at time of connection could be b.b.b.1-b.b.b.127.
Solutions (parameters Servers =, ControlServers =, MasterServers =)
* define all possible ip address in Servers = ...
* create dns A record with all possible ip addressees and use dns name as parameter value
* create feature request for parameters to accept CIDR notation
Possible solution:
* create feature request to add logic to client:
if none of Servers =, ControlServers =, MasterServers = are defined
and required authentication+encryption is configured
allow configuration value 0.0.0.0
as Servers =, ControlServers =, MasterServers = parameter value.
thank you,
Ales
Hi!
Currently the only working solution is to list all possible server's IP addresses in MasterServers. Using DNS name will not work because agent do name resolution only once at startup. I'll add feature request for supporting subnets in form xxx.xxx.xxx.xxx/nn in *Servers parameters.
Best regards,
Victor