ZyXEL Communications USG 2000 7.11.1 Create the Address Objects, 7.11.2 Configure NAT

Chapter 7 Tutorials

7.11.1 Create the Address Objects

Use Configuration > Object > Address > Add to create the address objects.

1Create a host address object named DMZ_HTTP for the HTTP server’s private IP address of 192.168.3.7.

Figure 114 Creating the Address Object for the HTTP Server’s Private IP Address

2Create a host address object named Public_HTTP_Server_IP for the public WAN IP address 1.1.1.1.

Figure 115 Creating the Address Object for the Public IP Address

7.11.2 Configure NAT

You need a NAT rule to send HTTP traffic coming to IP address 1.1.1.1 on ge3 to the HTTP server’s private IP address of 192.168.3.7. In the Configuration > Network > NAT screen, click the Add icon and create a new NAT entry as follows.

•Set the Incoming Interface to ge3.

•Set the Original IP to the Public_HTTP_Server_IP object and the Mapped IP to the DMZ_HTTP object.

•HTTP traffic and the HTTP server in this example both use TCP port 80. So you set the Port Mapping Type to Port, the Protocol Type to TCP, and the original and mapped ports to 80.

	155
ZyWALL USG 2000 User’s Guide	155