TZ400 - Single WAN interface, Multiple public static IPs

TC10284

Hello,

I am working on a setup where I have a single WAN interface, with multiple public static IPs. The goal is to allow RDP connections to each static IP (no more than one to three at a time) to a Hyper V server on our internal LAN that will run multiple Windows Server VMs in Hyper V.

What is the best way to setup these IPs in the SonicWall and is there anything specific I need to do for the VMs?

If I do subinterfaces on the WAN, do I have to do any type of special VLANs to talk to the Internal VMs?

Thanks!

shiprasahu93

Hello @TC10284,

Welcome to SonicWall community.

If the static IP addresses are in the same subnet as the existing WAN interface IP, you can directly create the port forwarding rules for them to point at the VMs using inbound NAT and access rules.

If they do not belong to the same subnet as WAN Interface, you can use static ARPs and route to bind them to the existing WAN interface and then create the port forwarding rules.

This KB article should be helpful.

https://www.sonicwall.com/support/knowledge-base/configuring-multiple-wan-subnets-using-static-arp-with-sonicos-enhanced/170503911164326/

Thanks!

Wayne

Hello @TC10284

I think @shiprasahu93 provide a great technical answer. My question is what are you trying to accomplish by using multiple IP's? If you have only one WAN interface, then I assume you're only using one ISP connection. If that's correct, then I don't see any performance or security benefits to having remote users connect back to different public IP's if they are all going to use the same ISP and terminate on the same firewall interface. So I think you might be making the solution more complicated than necessary, or there's critical information missing in how you described your scenario.

W.