| |
|
|
|
 |
|
|
 |
|
| |
Firewall - 1 to 1 NAT
[edit] Overview
| 1-to-1 NAT Firewall |
Information |
| Description |
Configuration tool for 1-to-1 NAT. |
| Package Name |
cc-firewall-dmz |
| Configuration Page |
Network > Firewall > 1-to-1 NAT |
1-to-1 NAT maps a real Internet IP to an IP on your local area network (LAN).
[edit] Installation
If you did not select this module to be included during the installation process, you must first install the module.
 |
Warning! |
 |
| |
 |
|
This module is not available in the Home/Community Edition |
|
[edit] Configuration
You can map 1-to-1 NAT IPs in one of two ways:
- With no firewall at all
- With selective ports open
[edit] 1-to-1 NAT - No Firewall
Some protocols can be finicky behind firewalls. In this case you want to configure 1-to-1 NAT with no firewall (make sure you firewall/secure the target LAN system some other way!). In the screenshot below:
- 216.138.245.23 is mapped to a LAN machine at 192.168.2.2
- no firewall is enabled.
[edit] 1-to-1 NAT - Selective Ports Open
In the screenshot below:
- 216.138.245.23 is mapped to an LAN machine at 192.168.2.2
- only port 22 (SSH) and port 80 (web) are accessible
[edit] 1-to-1 NAT - With MultiWAN
As of ClarkConnect 4.0 it is now possible to utilize 1-to-1 NAT with a MultiWAN configuration. The configuration remains mostly the same with the addition of an Interface drop-down box containing a list of configured MultiWAN network interfaces.
 |
Warning! |
 |
| |
 |
|
1-to-1 NAT with MultiWAN support is only available in the 4.x Office/Enterprise Edition
|
|
Each 1-to-1 NAT rule must be assigned to an external MultiWAN interface as shown by example below:
|
|
|