public ip > local ip

RouterOS General
1

I have a situation that I need to figure out quickly.

I have a public IP on int WAN=65.123.x.x
I have a local IP on int LAN=10.59.1.64

I need to set up something that will allow an outside IP to tunnel thru my network to the LAN ip while retaining all my other connections…

I am affraid of creating a src + dst rule in fear that I might route all traffic to that box and bring my network down.

Can you guys give me a solution!? I need step by step on this, this is my first time ever dealing with this!!

Thanks!

::More Specs on Setup::

This is what I need to see happen…

Remote office (24.29.x.x)

T1 (65.123.x.x)

MT (10.59.1.1)

AP (10.59.1.9)

CPE (10.59.1.25)

PIX501 (10.59.1.64)

How is this done? Thanks in advance!!
:question:

2

You can use the feature called Proxy-ARP which will allow you to use a Public IP address on your private network. It’s then proxied through the router and there’s no need to alter your NAT settings. I believe you would enable this on your LAN interface, someone please correct me if I’m wrong (I’ve yet to use this feature, there was a detailed discussion about proxy-arp a few months back try searching the forum).

The other way to do it is called 1:1 NAT using the src/dst nat tables in the firewall, it maps a public IP address to a private IP. This has been discussed time and time again on these forums, again try searching.