NAT Rule Add Page RDR Flavor | SMC Networks SMC7204BRA instruction

Adding NAT Rules

The following example illustrates using the RDR rule to provide external access to your web server:

Your ADSL Barricade receives a packet containing a request for access to your Web server. The packet header contains the public address for your LAN as the destination IP address, and a destination port number 80. Because you have set up an RDR rule for incoming packets with destination port 80, the device recognizes the data as a request for Web server access. The device changes the packet's destination address to the private IP address of your Web server and forwards the data packet to it.

Your Web server sends data packets in response. Before the ADSL Barricade forwards them on to the Internet, it changes the source IP address in the data packets from the Web server's private address to your LAN's public address.

To an external Internet user then, it appears as if your Web server uses your public IP address.

Figure 23. NAT Rule - Add Page (RDR Flavor)

69

Image 71

SMC Networks SMC7204BRA manual NAT Rule Add Page RDR Flavor

Contents

Page February Table of Contents Configuring Network Address Translation Getting Started with the Configuration ManagerConfiguring the LAN Ports Configuring Dynamic Host Configuration Protocol Configuring the ATM Virtual Circuit Configuring DNS Server AddressesConfiguring IP Routes Configuring the Routing Information Protocol Configuring Bridging Configuring PPP InterfacesConfiguring EOA Interfaces Configuring IPoA Interfaces Appendix B Viewing DSL Line Information Administrative TasksAppendix a Introduction Features Notational conventions Using this DocumentSystem Requirements Introduction Special messages Using this DocumentTypographical conventions Getting to Know Adsl Barricade Package Contents Rear Panel Hardware DescriptionGetting to Know the Adsl Barricade Front Panel Quick Start Connecting the Hardware Connect the Adsl cable Quick Start Connect the Ethernet cable Configuring Your ComputersAttach the power connector Power up your systems Windows XP Windows Windows Me Windows 95 Quick Start Windows NT Assigning static Internet Information to your PCs Logging into the Adsl Barricade Quick Configuration Configuring the Adsl BarricadeConfiguring the Adsl Barricade Path that your connection uses to communicate with your ISP With your ISP Bridge Configuration of your devicePassword You have used to log in to Configuration Manager Addresses Default Router Settings LAN Ports on page 33 for a Internet. See ConfiguringDescription of the NAT service Accessing the Configuration Manager Getting Started with the Configuration Manager Login Screen Getting Started with the Configuration Manager Browser window. Help is available from any main topic Functional LayoutFunctional Layout Commonly used buttons System View Table Home Page and System View Table Home Page and System View Table Modifying Basic System Information Daylight Modifying Basic System InformationTime Zone Committing your changes Committing Changes and Rebooting Rebooting the device using Configuration Manager Committing Changes and Rebooting Session Reboot from LastConfiguration Just committed Configuring the LAN Port IP Address ConfiguringConnecting via Ethernet LAN Configuration Configuring the LAN Ports Configuring the LAN Port IP Address Configuring the LAN Ports Configuring the LAN Port IP Address Viewing the Adsl Barricades IP Addresses Viewing System IP Addresses and IP Performance Statistics Viewing System IP Addresses and IP Performance Statistics Viewing IP Performance Statistics Viewing IP Performance Statistics Overview of Dhcp Configuring Dynamic Host Configuration ProtocolWhat is DHCP? Adsl Barricade Dhcp modes Configuring Dynamic Host Configuration ProtocolWhy use DHCP? Guidelines for creating Dhcp server address pools Configuring Dhcp ServerConfiguring Dhcp Server Configuring Dynamic Host Configuration Protocol Adding Dhcp Server Address Pools Mac Address Start IP AddressEnd IP Address For distribution to your LAN computers Gateway As explained onDomain Name Addresses in this pool. This is used for reference only Dhcp Server Pool Modify Viewing, modifying, and deleting address pools Viewing current Dhcp address assignments Excluding IP addresses from a pool Mac Configuring Dhcp RelayNetmask These terms Dynamic Host Configuration Protocol Dhcp Relay Configuration Configuring Dhcp Relay Dynamic Host Configuration Protocol Dhcp Setting the Dhcp Mode Setting the Dhcp Mode Overview of NAT Configuring Network Address Translation Configuring Network Address Translation Viewing NAT Global Settings and Statistics Viewing NAT Global Settings and Statistics When in the establishing state, the session will timeout TCP Def TimeoutActive state, where the connection is being used to Time specified in TCP Idle Timeout NAT Rule Global Statistics Viewing NAT Rules and Rule Statistics Network Address Translation NAT Rule Configuration Viewing Current NAT Translations Viewing Current NAT Translations TCP, UDP, Icmp Is enabledWas invoked from the rule definition Protocol Ports Number was translated Out PortsTranslated Adding NAT Rules NAT Rule-Add Page Napt Flavor Adding NAT Rules RDR rule Allowing external access to a LAN computer NAT Rule Add Page RDR Flavor Configuring Network Address Translation Adding NAT Rules NAT Rule Add Page Basic Flavor Basic rule Performing 11 translations Adding NAT Rules NAT Rule Add Page Filter Flavor Adding NAT Rules Bimap rule Performing two-way translations NAT Rule Add Page Bimap Flavor NAT Rule Add Page Pass Flavor Adding NAT Rules Assigning DNS Addresses Configuring DNS Server AddressesAbout DNS Configuring DNS Server Addresses Configuring DNS Relay Configuring DNS Relay Domain Name Service DNS Configuration Overview of IP Routes Configuring IP RoutesIP routing versus telephone switching Hops and gateways Configuring IP Routes Do I need to define IP routes? Using IP routes to define default gatewaysOverview of IP Routes IP Route Table Viewing the IP Routing Table Viewing the IP Routing Table IP Route-Add Adding IP Routes Adding IP Routes RIP Overview Configuring the Routing Information Protocol When should you configure RIP? Configuring the Adsl Barricades Interfaces with RIPConfiguring the Routing Information Protocol Routing Information Protocol RIP Configuration Configuring the Adsl Barricades Interfaces with RIP Configuring the Routing Information Protocol Configuring the Adsl Barricades Interfaces with RIP RIP Global Statistics Viewing RIP Statistics Viewing Your ATM VC Configuring the ATM Virtual Circuit Vpi Configuring the ATM Virtual CircuitSoftware and identify the type of traffic that can be Use an aal5-type interface Adding ATM VCs Adding ATM VCs Modifying ATM VCs ATM VC Interface Modify Modifying ATM VCs Configuring PPP Interfaces Ignore WAN to LAN traffic while monitoring inactivity Viewing Your Current PPP ConfigurationConfiguring PPP Interfaces Inactivity TimeOut mins Viewing Your Current PPP Configuration Device will acquire IP addresses for other Disable, LAN hosts will use the DNS addressPreconfigured in the Dhcp pool see Configuring Under way e.g., password authorization or Viewing PPP Interface Details Viewing PPP Interface Details Each requiring a different login and other EnabledRebooted Service Name ISP issued a special packet type to terminate By changing the Configuration Manager settingsWith the timeout period specified on the PPP On the user name and/or password provided PPP Interface Add Adding a PPP Interface Definition Modifying and Deleting PPP Interfaces Modifying and Deleting PPP Interfaces 114 Overview of EOA Configuring EOA Interfaces Configuring EOA Interfaces Viewing Your EOA Setup Viewing Your EOA Setup Adding EOA Interfaces Default RouteEnable or disable the interface a red ball may indicate a Problem with the DSL connection EOA Interface Add Adding EOA Interfaces 120 Viewing Your IPoA Interface Setup Configuring Ipoa Interfaces Configuring IPoA Interfaces Adding IPoA Interfaces Enable or disable the interface a down interface mayIndicate a problem with the DSL connection Adding IPoA Interfaces 124 Overview of Bridges Configuring Bridging Configuring Bridging Defining Bridge Interfaces When to Use the Bridging FeatureWhen to Use the Bridging Feature 128 Deleting a Bridge Interface Deleting a Bridge Interface Configuring Global Firewall Settings Configuring Firewall Settings Configuring Firewall Settings Configuring Global Firewall Settings Its automatic timed expiration Managing the Black ListID assigned to the rule Configuring IP Filters Configuring IP Filters and Blocked Protocols Viewing Your IP Filter Configuration Configuring IP Filters and Blocked Protocols Configuring IP Filter Global Settings Configuring IP Filters Creating IP Filter Rules Outgoing refers to packets going to the Internet External computers from accessing your LANThat are incoming or outgoing on the selected interface Incoming refers to packets coming from the LAN Option is valid only for the outgoing direction Choosing the appropriate interface for various rule types Blacklist Log Option to Enable if you configure a Log TagSecurity Low, then the rule will be inactive Specified address Rule to be invoked on packets containingAny any source IP address Lt any source IP address that is numerically less than Received in the anticipated state. Such packets can signify Unwelcome attempt to gain access to a networkStore State An ongoing communication, etc. This option provides That have options specified in their packet headers Example IP filter rule examples 146 Viewing IP Filter Statistics IP Filter Rule Statistics Managing Current IP Filter Sessions Time to expire Blocked ProtocolsBlocked Protocols Filter rule, are assigned a session index 150 Is often used for handling e-mail, mailing lists Address Resolution Protocol. Computers on a LAN use ARP toComputers when they only know their IP addresses Your ISP before blocking this protocol Large networks DSL Status Viewing DSL Line Information DSL Parameter Viewing DSL Line Information 155 156 Changing Login Passwords Administrative TasksConfiguring User Names and Passwords User Configuration Administrative Tasks Viewing the Alarm Table Viewing System AlarmsViewing System Alarms Upgrading the Software Image Upgrade File Using DiagnosticsUsing Diagnostics 162 Overview of IP port numbers Modifying Port SettingsModifying Port Settings Modifying the Adsl Barricade’s port numbers 165 Structure of an IP address Appendix aIP Addresses Network ID Host ID Appendix a Network classes Network classes Subnet masks Subnet masks Definition binary numbers Appendix BBinary Numbers Definition bit and byte Appendix BBits and bytes Troubleshooting Internet Access My PC cannot access Internet Troubleshooting My LAN PCs cannot display web pages on the Internet Diagnosing Problem using IP Utilities My changes to Configuration Manager are not being retained 179 180 Technical Specifications Chap Technical Specifications Environmental Operating Range Power DissipationOperating System Support Safety Power InputWeight Dimensions Analog AuthenticateTerminology Terminology Digital Filtering Domain nameDownload Ethernet Hop count FirewallGbps Hop Intranet HostIn-line filter Internet 191 NAT rule MaskMbps Microfilter Port Network maskPacket Remote Pots splitterProtocol Splitterless RoutingRule Splitter Subnet mask Subnet Upstream TelnetTwisted pair Web Web browser Web site FCC Part CompliancesFCC Class B Compliances EC Conformance Declaration Class B Wichtige Sicherheitshinweise Germany Safety Compliance Compliances Legal Information Contacts SMCs Limited Warranty Statement Legal Information and Contacts Is subject to change without notice Limitation of Liability