Share via

nat access

Shahin Mortazave 491 Reputation points
2020-10-23T08:22:17.247+00:00

Hi,

We have a single server in a datacenter with a NIC that has a single public IP and there is no nat device in front of this device, just a simple firewall that we use to allow RDP access to this server from certine IP address. We have install Hyper-v on this server and create some VMs and these VMs are in the 10.0.10.0/24 LAN and all have internet access.
I want to setup some webservers on this VMs and made the accessable from internet but becuase there is no NAT device in from of the LAN I have no idea to do this. can I install the RRAS on the hyper-v host and use that to publish access to my websites? or any other suggestions?
Thanks

Hyper-V
Hyper-V
A Windows technology providing a hypervisor-based virtualization solution enabling customers to consolidate workloads onto a single server.
2,636 questions
Windows Server Infrastructure
Windows Server Infrastructure
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Infrastructure: A Microsoft solution area focused on providing organizations with a cloud solution that supports their real-world needs and meets evolving regulatory requirements.
530 questions
0 comments
Accepted answer
  1. Gloria Gu 3,896 Reputation points
    2020-10-26T07:04:22.207+00:00

    @Shahin Mortazave Hi,

    Thank you for posting in Q&A!

    In regards to your issue, following are my suggestions:

    1.As you mentioned, >>"can I install the RRAS on the hyper-v host and use that to publish access to my websites?"

    This method is not suggested for two reasons:
    (1) Usually, it is not suggested to install RAS role on hyper-v host
    (2) You have already created an NAT switch for the VM to access Internet, the installation of RAS role will just achieve the same result as NAT.

    2.If you want to >>"setup some webservers on this VMs and made the accessable from internet",

    this can be achieved by creating NAT rules on the existing NAT network you created on the host.
    The NAT rule is configured with Port Forwarding.     We will create NAT rule for each virtual machine and forward the external port internal ports on the virtual machine.
    Please refer to the following link:
    https://petri.com/create-nat-rules-hyper-v-nat-virtual-switch

    Hope you have a nice day!
    Gloria

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments

4 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2020-10-23T09:56:57.113+00:00

    Who manages the 10.0.10.0/24 LAN network? They should be able to help you with the required routing.

    --please don't forget to Accept as answer if the reply is helpful--

    0 comments
  2. Shahin Mortazave 491 Reputation points
    2020-10-23T13:15:23.417+00:00

    I am managing the LAN myself, there is actually no LAN, Just a single Hyper-v host with a single NIC and I have setup an internal lan nat switch and VMs have internet connection. There is usually some soort of nat device but not in this case.

    0 comments
  3. Anonymous
    2020-10-23T13:22:03.113+00:00

    Ok, so the host connects direct via public ip address? As to NAT you can set this up but I probably would not do it on the host. Better to use a dedicated virtual machine for this purpose.
    https://www.dell.com/support/article/en-us/how10169/configuring-windows-server-2012-r2-as-a-router?lang=en

    --please don't forget to Accept as answer if the reply is helpful--

    0 comments
  4. Shahin Mortazave 491 Reputation points
    2020-11-27T12:30:44.997+00:00

    @Gloria Gu

    Hi Gloria,
    I hope you dont mind that I reopen this post. I have one more question that maybe you can answer it.
    We have now a different Physical server that is connected to the first server that last time we setup the natswitch on it, the 2 dedicated servers are connected to vRack swtich and the LAN nic of both Physical servers have the same ip range as the VMs on one of the Physical servers. Physical servers can ping each other but they cannot ping the VMs. Also I have to say that the Physical servers are in a VLAN 99, we put the natswitch and one of the VMs in the same VLAN but still cannot ping the VMs from the new Physical server.
    Any idea how we can reach the VMs from the Physical server?

    Thanks