Add

It allows you to add the one you choose from the ARP table or the

 

IP/MAC address typed in Add and Edit to the table of IP Bind

 

List.

Edit

It allows you to edit and modify the selected IP address and MAC

 

address that you create before.

Delete

You can remove any item listed in IP Bind List. Simply click and

 

select the one, and click Delete. The selected item will be

 

removed from the IP Bind List.

Note: Before you select Strict Bind, you have to bind one set of IP/MAC address for one PC. If not, no one of the PCs can access into Internet. And the web configurator of the router might not be accessed.

3.3 NAT

Usually, the router serves as an NAT (Network Address Translation) router. NAT is a mechanism that one or more private IP addresses can be mapped into a single public one. Public IP address is usually assigned by your ISP, for which you may get charged. Private IP addresses are recognized only among internal hosts.

When the outgoing packets destined to some public server on the Internet reach the NAT router, the router will change its source address into the public IP address of the router, select the available public port, and then forward it. At the same time, the router shall list an entry in a table to memorize this address/port-mapping relationship. When the public server response, the incoming traffic, of course, is destined to the router’s public IP address and the router will do the inversion based on its table. Therefore, the internal host can communicate with external host smoothly.

The benefit of the NAT includes:

zSave cost on applying public IP address and apply efficient usage of IP address. NAT allows the internal IP addresses of local hosts to be translated into one public IP address, thus you can have only one IP address on behalf of the entire internal hosts.

zEnhance security of the internal network by obscuring the IP address. There are many attacks aiming victims based on the IP address. Since the attacker cannot be aware of any private IP addresses, the NAT function can protect the internal network.

On NAT page, you will see the private IP address defined in RFC-1918. Usually we use the 192.168.1.0/24 subnet for the router. As stated before, the NAT facility can map one or more IP addresses and/or service ports into different specified services. In other words, the NAT function can be achieved by using port mapping methods.

Below shows the menu items for NAT.

3.3.1 Port Redirection

Port Redirection is usually set up for server related service inside the local network (LAN), such as web servers, FTP servers, E-mail servers etc. Most of the case, you need a public IP address for each server and this public IP address/domain name are recognized by all users.

50

Vigor2910 Series User’s Guide

Page 56
Image 56
Draytek 2910 manual Nat, Port Redirection

2910 specifications

The DrayTek 2910 is a versatile and robust router designed primarily for small to medium-sized businesses, offering a wide array of features that cater to various networking needs. With its advanced capabilities, it delivers superior performance and flexibility for organizations that demand reliable internet connectivity.

One of the defining characteristics of the DrayTek 2910 is its dual WAN capabilities. This allows users to connect two different internet service providers, ensuring that the network remains operational even if one connection fails. The router can automatically switch between the WANs, providing seamless failover and load balancing. This feature is essential for businesses that require constant uptime and reliability.

The DrayTek 2910 is equipped with multiple Ethernet ports, enabling it to support various devices and create a robust local area network (LAN). The router includes VLAN support, which allows for the segmentation of the network into different virtual networks, enhancing security and performance by isolating sensitive data traffic.

Another notable aspect of the DrayTek 2910 is its comprehensive security features. It includes a built-in firewall, which protects the network from external threats and unauthorized access. The router supports various protocols, including VPN (Virtual Private Network), allowing secure remote access to the network. This capability is particularly beneficial for businesses with remote workers or those needing secure connections for branch offices.

DrayTek has also integrated advanced Quality of Service (QoS) features in the 2910, which prioritize bandwidth allocation to critical applications, ensuring that essential services receive the needed resources. This is crucial for maintaining the performance of VoIP (Voice over Internet Protocol) calls and video conferencing tools, which are increasingly vital in today’s business environment.

In terms of management, the DrayTek 2910 offers easy configuration through a user-friendly web interface, allowing administrators to set up and monitor the network with minimal effort. The device also supports TR-069 for remote management, enabling service providers to configure and monitor the router without requiring an on-site visit.

Overall, the DrayTek 2910 stands out for its blend of reliability, security, and performance, making it an excellent choice for businesses looking to enhance their networking capabilities while ensuring a secure and efficient operation. With its rich set of features and technologies, the DrayTek 2910 continues to be a preferred router for many organizations worldwide.