TL;DR
What technology should I use to translate an internal address (192.168.1.10) to another internal address (192.168.1.11)? So that when I access the first I get redirected to the other?
Long Story
I have a pbx box that I need to move from one location to another. The ip of the pbx box is 192.168.1.160 and all the phones points to that address.
When the pbx box is moved it will reside at 192.168.2.160.
As it is now the two different subnets are connected by a site-to-site connection which means that you can access 192.168.2.0/24 from within 192.168.1.0/24 no problem. (That is why I mentioned them earlier to both be internal)
My problem is that the move will take some time, and I will have to manually configure all the phones for the new location 192.168.2.160. Hence I need to split this task up in two.
- day one/ move server, nat(or what not) from address a to address b.
- day two/ configure phones manually one by one, then remove natting(or
what not)
In this way as I see it no one will ever be affected by the move
But my question is: is it a nat rule that i need to apply.
The setup:
192.168.2.0/24 -> pfsense -> WAN(site-to-site) <-pfsense <- 192.168.1.0/24
Best Answer
Assuming:
Here's one way you could do this.
Prep:
Changeover:
Keep in mind that you need to know what ports the phones use, and you have to unblock those in the firewalls. Also keep in mind that depending on your hardware you may lose some functionality in the phones when working across VPN tunnels / WAN links. For example, 3com NBX's use multicast for time updates, status lights, and paging. Some hardware will simply not support multicast forwarding across a VPN channel - which means these features won't work on remote phones.
I would recommend setting up some kind of computer at the remote site, and then setting up the configs in the firewalls. Verify site-to-site routing/connectivity before continuing with the phones.