Specifications
Managing Remote Access Network Uses Mobility Router Redundancy Cluster and NAT with Firewall
6
ShoreTel Mobility Router Administration Guide 45
Network Uses Mobility Router Redundancy Cluster and NAT
with Firewall
In this network configuration, there is a cluster of two Mobility Routers. Each Mobility Router uses the
eth0 interface for communications to a default gateway and the internal network. Each eth1 interface
uses an internal IP address. In addition to the physical eth0 interfaces, there is a virtual eth0 IP
address that is used to manage the cluster.
The default gateway is connected to a firewall using NAT with a publicly accessible IP address. Users
with ShoreTel Mobility Clients running on their mobile devices access this publicly accessible IP
address to create tunnels so that they can use Secure Remote Voice and Secure Enterprise Services.
An example of this network configuration is shown in Figure 26.
There is also a virtual eth1 IP address, which is the IP address to which traffic sent to the publicly
accessible IP address is forwarded. For a redundancy cluster, the virtual IP address is used rather
than the physical IP address because the virtual IP address remains constant if failover occurs and the
standby takes the active role. For information about redundancy clusters, see “Managing Redundancy
Clusters” on page 227.
Figure 26: Network Configuration That Uses Redundancy Cluster with NAT
eth0=10.1.2.3 eth1=10.1.4.3
Firewall
Enterprise LAN
“Internet”
Desk phone
IP-PBX
Public IP=11.2.3.4
NAT translation (11.2.3.4 to
10.1.4.10)
eth0=10.1.2.4 eth1=10.1.4.4
Active node
Standby node
Virtual IP=10.1.2.10 Virtual IP=10.1.4.10