| |
|
|
|
 |
|
|
 |
|
| |
Firewall - 1 to 1 NAT
Overview
| 1-to-1 NAT Firewall |
Information |
| Description |
Configuration tool for 1-to-1 NAT. |
| Package Name |
app-firewall-dmz / cc-firewall-dmz |
| Configuration Page |
Network > Firewall > 1-to-1 NAT |
1-to-1 NAT maps a real Internet IP to an IP on your local area network (LAN).
Installation
If you did not select this module to be included during the installation process, you must first install the module.
 |
Warning! |
 |
| |
 |
 |
This module is not available in the Home/Community Edition |
|
Configuration
You can map 1-to-1 NAT IPs in one of two ways:
- With no firewall at all
- With selective ports open
1-to-1 NAT - No Firewall
Some protocols can be finicky behind firewalls. In this case you want to configure 1-to-1 NAT with no firewall (make sure you firewall/secure the target LAN system some other way!). In the screenshot below:
- 216.138.245.23 is mapped to a LAN machine at 192.168.2.2
- no firewall is enabled.
1-to-1 NAT - Selective Ports Open
In the screenshot below:
- 216.138.245.23 is mapped to an LAN machine at 192.168.2.2
- only port 22 (SSH) and port 80 (web) are accessible
1-to-1 NAT - With MultiWAN
As of ClarkConnect 4.0 it is now possible to utilize 1-to-1 NAT with a MultiWAN configuration. The configuration remains mostly the same with the addition of an Interface drop-down box containing a list of configured MultiWAN network interfaces.
|
Warning! |
|
| |
|
|
1-to-1 NAT with MultiWAN support is only available in the 4.x Office/Enterprise Edition
|
|
Each 1-to-1 NAT rule must be assigned to an external MultiWAN interface as shown by example below:
|
|
|
