I've been tasked with setting up a VPN and routing some traffic to an internal server versus pointing to the internet facing WAN interfaces on a SonicWALL firewall. I have access to the firewall and am trying to figure out where this traffic goes internally but I'm confused when looking at the configuration. This is all SQL traffic, for what it's worth. (All IPs have been changed for obvious reasons)
Our application is in the 2.2.2.0/24 network on the internet
Currently the applications have connection string that point to sql.domain.com, which resolves to 1.1.1.10
There are several NAT policies, but the only one that includes the 1.1.1.10 on port 1433 looks like this
Source - Any || Translated - Original || Destination Original - 1.1.1.2, 1.1.1.3, 1.1.1.4, 1.1.1.10 || Destination Translated 10.10.10.2, 10.10.10.3, 10.10.10.4, 10.10.10.5, 10.10.10.6 || Service - TCP 1433 || Translated - Original || Inbound - Any || Outbound - Any
There is a firewall rule as well
From - WAN || To - LAN || Source 2.2.2.0/24 || Destination 1.1.1.2, 1.1.1.3, 1.1.1.4, 1.1.1.10 || Service - TCP 1433 || Allow
I can't figure out what internal IP address on the 10.10.10.X range SQL traffic will go to when it comes from the 2.2.2.X network and hits the 1.1.1.10 address on the WAN interface of the firewall. Is this declared somewhere else in the firewall configuration that I'm missing?
No comments:
Post a Comment