Wrong...For the simple reason I have outlined, later to change the iot device traffic to a new IP, only requires a change on the dstnat rule and none on the iot devices. Less work in my book.
Perhaps others see a fault in my logic, as I dont mind being wrong.
Let services do what they are designed to do.
Do not mask static configuration with dst-nat rule. It's a fast convinient solution just for now but is it the future-proof solution?
Assuming that all IoT devices are configured to use DNS names - no matter what DNS server serves that name - then if Josephny manage to configure OSPF or OSPF+BGP for routing among offices/branches, the only setting to change is the DNS value.
I do not know if the trafic goes now only from branches to main office or (sooner or later) there would be a need for office->branch trafic. What then?
What if Josephny decide to set additional inter-branch connections to have HA? What about setting just dst-nat redirections? What about central NAS placed at main place?
Statistics: Posted by BartoszP — Sun Apr 06, 2025 1:08 pm