Adding A Nat Rule - D-Link NetDefend DFL-210 User Manual

7.2. NAT
4. NetDefendOS receives the packet and compares it to its list of open connections. Once it finds
the connection in question, it restores the original address and forwards the packet.
5. The original sender now receives the response.
Example 7.1. Adding a NAT Rule
To add a NAT rule that will perform address translation for all HTTP traffic originating from the internal network,
follow the steps outlined below:
Command-Line Interface
First, change the current category to be the main IP rule set:
gw-world:/> cc IPRuleSet main
Now, create the IP rule:
gw-world:/main> add IPRule Action=NAT Service=http
Return to the top level:
gw-world:/main> cc
Web Interface
1. Go to Rules > IP Rules > Add > IPRule
2. Specify a suitable name for the rule, for example NAT_HTTP
3. Now enter:
• Action: NAT
• Service: http
• Source Interface: lan
• Source Network: lannet
• Destination Interface: any
• Destination Network: all-nets
4. Under the NAT tab, make sure that the Use Interface Address option is selected
5. Click OK
Protocols Handled by NAT
Dynamic address translation is able to deal with the TCP, UDP and ICMP protocols with a good
level of functionality since the algorithm knows which values can be adjusted to become unique in
the three protocols. For other IP level protocols, unique connections are identified by their sender
addresses, destination addresses and protocol numbers.
195.55.66.77:80 => 192.168.1.5:1038
SourceInterface=lan
SourceNetwork=lannet
DestinationInterface=any
DestinationNetwork=all-nets
Name=NAT_HTTP
NATAction=UseInterfaceAddress
300
Chapter 7. Address Translation