1 to 1 NAT problems
I have just moved our comcast service to a new location. The old and new each had 5 static IP addresses that I had working at our old location with cascaded NAT settings.
Connected to the comcast CG3000DCR gateway is my Netgear FVS338 VPN router.
On my old comcast box I had 1-1 NAT set up for
aa.bb.cc.73 -> 192.168.1.99 (This is the Netgear FVS338 and used for VPN)
aa.bb.cc.74 -> 192.168.1.101
aa.bb.cc.75 -> 192.168.1.102
aa.bb.cc.76 -> 192.168.1.103
aa.bb.cc.77 -> 192.168.1.100
My Netgear FVS338 has similar 1-1 NAT set to direct those 5 addresses to computers on the LAN side in the 192.168.10 subnet and all was working just fine.
When we moved to a new location I had temporarily set up another VPN between our old and new locations with a TPLink router at the new location behind the CG3000DCR to handle the VPN
When we got to the point of moving our servers to the new building, I switched my 2 routers so that the FVS338 was at the new location. Since that CG3000DCR had the lan side set with the 10.1.10 subnet, I had to modify the 1-1 NAT on the FVS338 accordingly to match the 1-1 NAT that I set on the CG3000DCR:
dd.ee.ff.73 -> 10.1.10.5 (new address for the FVS338)
dd.ee.ff.74 -> 10.1.10.6
dd.ee.ff.75 -> 10.1.10.7
dd.ee.ff.76 -> 10.1.10.8
dd.ee.ff.77 -> 10.1.10.9
I had experienced a lot of problems getting my VPNs to connect reliably to the FVS338 for the 1st week, but now they seem to be connecting OK I have 1 location with a static IP and 2 others with dynamic IPs that are connected so my .34 public address does seem to be working.
I cannot seem to connect (from an outside IP address) to any of the other 4. As far as I can tell I have the same settings on the Comcast router as I had at my old location other than the different addresses. The strange thing is that a week ago for a period of about a half hour I was able to access all 5 of the public addresses (by using VNC to connect over my VPN to a remote PC and then trying to access via the public static IPs) and then without making any changes to either router it suddenly stopped working and has not worked since.
The comcast router shows that it has the /29 for 5 static addresses.
If I connect a computer directly to the comcast cable modem outside of my FVS338 so it is in the 10.1.10 subnet it can see all of the 1-1 NAT computers that I configured on the FVS338 so I know those are getting outside of that router.
I don't know what to try next. Could there be something on COmcast's end that is only giving me the 1 static IP address instead of the 5 even though my router is configured for 5? That woudl seem odd since the router's address is .78 and if only 1 was assigned I would have expected it to be .74
both the Disable Firewall and Disable Smart Packet Detection are checked.
Thanks for any help,