1. Manuals
  2. Brands
  3. Tavve Manuals
  4. Firewall
  5. zoneranger
  6. User manual

Chapter 3: Address Transforms - Tavve zoneranger User Manual

Hide thumbs
Table of Contents

Advertisement

Chapter 3: Address Transforms

An address transform is a simple rule that specifies how to take a given IP address or hostname value,
and transform it to a new value. Address transforms are used by the Proxy Map service in the Ranger
Gateway in order to accommodate static NAT configurations, where the address for a managed device as
specified by a management application is different from the actual address of the managed device.
Address transforms, in this case, are used to convert the device address as specified by the management
application into the real address that the ZoneRanger will use to communicate with the managed device.
For example, the following address transform indicates that the first three parts of the resulting address
should be 192.168.1 , and the wild card character in the last part of the transform indicates that that
the last part of the resulting address should be copied from the original address.
192.168.1.*
The following table illustrates the addresses that would result from applying a variety of simple address
transforms to a number of input addresses:
Original Address
127.0.0.3
64.2.37.4
64.2.37.55
192.168.2.10
Address transforms can also perform simple computations. For example, the following address
transform indicates that the first three parts of the resulting address should be 192.168.1 , and the *+2
expression in the last part of the transform indicates that that the last part of the resulting address should
be calculated by taking the last part of the original address and adding 2.
192.168.1.*+2
The following table illustrates the addresses that would result from applying a variety of address
transforms to a number of input addresses:
Original Address
127.0.0.3
64.2.37.4
64.2.37.25
192.168.3.200
192.168.3.254
Note that
and
+
Address transforms can also be used with host names. For example, the following address transform
indicates that the last two parts of the resulting hostname should be dmz1.com , and that the first part of
the hostname should be copied from the original hostname.
*.dmz1.com
The number of parts in the original hostname does not need to exactly match the number of parts in the
address transform. For example, the following table illustrates the addresses that would result from
applying the address transform *.dmz1.company.com to a variety of input hostnames:
ZoneRanger 5.5 User's Guide
Address Transform
192.168.1.*
192.168.1.*
10.1.*.*
10.1.*.*
Address Transform
192.168.1.*+2
192.168.1.*+2
10.1.*-2.*+2
10.1.*-2.*+2
10.1.*-2.*+10
are the only operations allowed, and all arithmetic is modulo 256.
Resulting Address
192.168.1.3
192.168.1.4
10.1.37.55
10.1.2.10
Resulting Address
192.168.1.5
192.168.1.6
10.1.35.27
10.1.1.202
10.1.1.8
16
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Table of Contents