Nat Table Checking Flow - ZyXEL Communications ZyWALL USG 200 Series User Manual
Unified security gateway
Hide thumbs
Also See for ZyWALL USG 200 Series:
- User manual (902 pages) ,
- Manual (1157 pages) ,
- Reference manual (394 pages)
Table of Contents
Advertisement
Policy Routes: These are the user-configured policy routes. Configure policy
2
routes to send packets through the appropriate interface or VPN tunnel. See
Chapter 15 on page 377
1 to 1 and Many 1 to 1 NAT: These are the 1 to 1 NAT and many 1 to 1 NAT
3
rules. If a private network server will initiate sessions to the outside clients, create
a 1 to 1 NAT entry to have the ZyWALL translate the source IP address of the
server's outgoing traffic to the same public IP address that the outside clients use
to access the server. A many 1 to 1 NAT entry works like multiple 1 to 1 NAT rules.
It maps a range of private network servers that will initiate sessions to the outside
clients to a range of public IP addresses. See
more.
Auto VPN Policy: The ZyWALL automatically creates these routing entries for the
4
VPN rules. Disabling the IPSec VPN feature's Use Policy Route to control
dynamic IPSec rules option moves the routes for dynamic IPSec rules up above
the policy routes (see
Static and Dynamic Routes: This section contains the user-configured static
5
routes and the dynamic routing information learned from other routers through
RIP and OSPF. See
Default WAN Trunk: For any traffic coming in through an internal interface, if it
6
does not match any of the other routing entries, the ZyWALL forwards it through
the default WAN trunk. See
trunk the ZyWALL uses as the default.
Main Routing Table: In ZLD 2.20 the default WAN trunk is expected to be used
7
for any traffic that did not match any earlier routing entries but the main routing
table has been retained for backwards compatibility with earlier ZLD versions.
6.4.3 NAT Table Checking Flow
The ZyWALL's NAT has been enhanced in ZLD version 2.20 and renamed from
virtual server. The following figure shows how the ZLD 2.20 firmware's NAT table
compares with the earlier 2.1x firmware's NAT table.The checking flow is from top
to bottom. As soon as the packets match an entry in one of the sections, the
ZyWALL USG 100/200 Series User's Guide
for more on policy routes.
Section 25.2 on page
Chapter 15 on page 377
Section 14.2 on page 372
Chapter 6 Configuration Basics
Section 19.2.1 on page 420
474).
for more information.
for how to select which
for
99
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
