I would like to ask if it's possible to have two external IPs on one VM in Google cloud. My intention is to have small weather VM which will collect data send to internet on one IP which will also server as management interface (nic0 - ssh + weather collect port) and another IP which will be used for Web services to present data (nic1 - http+https). I have created two networks with necessary firewall rules and VM with two interfaces and two external IPs but I am able to reach only external IP on nic0. Ping/telnet fails to reach IP address on nic1. Is there something I missed (routing for example) or it's allowed to use just one external IP per machine?
I've got a managed autoscaling group set up behind a load balancer in Google Compute. It's working well, and adds / removes instances as it should.
Is is possible to specify (in any way) the external IP address which is allocated to the instances in the group?
I was hoping that if I reserved static IP addresses, then the new machines would use them but instead they just seem to still use a random one from the ephemeral pool.
The issue is that the payment gateway we're using (Sagepay) needs to know the IP address of the servers that are sending payment requests. It can handle a class C subnet but obviously I need to be able to ensure that machines are getting IPs in the right range.
The only other possibility I could come up with was to try and proxy the outgoing traffic to Sagepay via a single machine on a known IP, but that seems like a poor solution!
Any hints appreciated.
I am wondering if it would be safe to setup my network with a single switch running both internal and external interfaces.
Currently I have a 255.255.255.240 block of IPs from the ISP and a 10.10.10.0/24 private network running from the router. The router has one WAN port and is setup with one of the external IPs as a static IP. All computers are currently off of the private network. The switch being used is a NETGEAR JGS516.
Basically the current setup is like this:
Computers ---- Switch ---- Router ---- ISP's Switch
What I would like to do is this (basically plugging both the WAN and LAN port of the router into the switch):
Router
/\
Computers ---- Switch ---- ISP's Switch
I have tried doing this and it seems to work. I can assign both public and private IPs to computers and they both function.
The reason I am wanting to make this change is so computers that are behind the switch can be assigned public IPs. I want some of them to only have public IPs, some only private IPs, and some to be assigned both private and public IPs using the single NIC in the computer.
What I want to know is:
What would be any downsides to this setup?
Would this compromize security on the network?
Could machines access computers that only have a private IP assigned to them?
Anything else I should know?
How are large organization's networks structured?
I'm specifically curious about college campuses. Do they all have a single external IP address? Or do they typically have multiple external IPs?
Is there some command line function within FreeNAS (FreeBSD) derivative which could return my external address? Since that same address is synchronized with DynDns (via router), in C# I retrieved that via DNS query like this:
var hostEntry = Dns.GetHostEntry("myexternalname.dyndns.org");
foreach (var iAddress in hostEntry.AddressList) {
if (iAddress.AddressFamily == AddressFamily.InterNetwork) {
MessageBox.Show(iAddress);
}
}