1. Manuals
  2. Brands
  3. TRENDnet Manuals
  4. Network Router
  5. TEV-639GR
  6. User manual

Virtual Server - TRENDnet TEV-639GR User Manual

Hide thumbs
Table of Contents

Advertisement

Packets received by the DMZ host have their IP addresses translated from the WAN-side IP address
of the router to the LAN-side IP address of the DMZ host. However, port numbers are not translated;
so applications on the DMZ host can depend on specific port numbers.
The DMZ capability is just one of several means for allowing incoming requests that might appear
unsolicited to the NAT. In general, the DMZ host should be used only if there are no other alternatives,
because it is much more exposed to cyberattacks than any other system on the LAN. Thought should
be given to using other configurations instead: a virtual server, a port forwarding rule, or a port trigger.
Virtual servers open one port for incoming sessions bound for a specific application (and also allow
port redirection and the use of ALGs).
Port forwarding is rather like a selective DMZ, where incoming traffic targeted at one or more ports is
forwarded to a specific LAN host (thereby not exposing as many ports as a DMZ host). Port triggering
is a special form of port forwarding, which is activated by outgoing traffic, and for which ports are only
forwarded while the trigger is active.
Few applications truly require the use of the DMZ host. Following are examples of when a
DMZ host might be required:
‧ A host needs to support several applications that might use overlapping ingress ports such that two
port forwarding rules cannot be used because they would potentially be in conflict.
‧ To handle incoming connections that use a protocol other than ICMP, TCP, UDP, and IGMP (also
GRE and ESP, when these protocols are enabled by the PPTP and IPSec
Enable DMZ: Putting a computer in the DMZ may expose that computer to a variety of security risks.
Use of this option is only recommended as a last resort.
DMZ IP Address: Specify the LAN IP address of the LAN computer that you want to have unrestricted
Internet communication.

VIRTUAL SERVER

Enable: Specifies whether the entry will be active or inactive.
Name: Assign a meaningful name to the virtual server, for example Web Server. Several well-known
types of virtual server are available from the "Application Name" drop-down list. Selecting one of these
entries fills some of the remaining parameters with standard values for that type of server.
IP Address: The IP address of the system on your internal network that will provide the virtual service,
for example 192.168.10.50. You can select a computer from the list of DHCP clients in the "Computer
Name" drop-down menu, or you can manually enter the IP address of the server computer.
22

Advertisement

Table of Contents
loading

Related Manuals for TRENDnet TEV-639GR

Related Content for TRENDnet TEV-639GR

Table of Contents