Table of Contents
Advertisement
– Port Forwarding: With port forwarding
to map incoming data to a given destination IP and (UDP/TCP) port
to another destination IP/port when forwarding the packet. As shown
in
fig. 32.1
packet processing. For every configured port forwarding rule, a filter
rule is implicitly added to the forwarding filter to allow the packet to
pass through the router. This is hinted by a dashed arrow in
– NAT: Network address translation
operations" both in the pre-routing ("1-TO-1 NAT") and in the post-
routing stage ("1-TO-1 NAT" and "NAPT") as shown in
every configured NAT rule, an associated filter rule can be added to the
forwarding filter to allow the packet to pass through the router. This is
hinted by a dashed arrow in
Note
The user can choose if an associated filter rule should be added for
each NAT rule or not. If disabled, the user needs to configure own
filter rule(s) to make the data packets pass through the firewall.
See
– Services: Filter rules are implicitly added to to the input filter to allow
packets for enabled services to enter the unit. This includes config-
urable services such as DHCP Server
ter
40), VRRP
TCP/UDP port numbers, IP protocols, and/or incoming interfaces appro-
priate for the configured services. As the WeOS unit acts as a DNS
forwarder, implicit allow rules to accept incoming DNS requests are also
added.
TTDP is a protocol for train
(hidden) 1-1 NAT rules and matching (hidden) filter rules to the forward
filter to allow the NAT:ed traffic to pass.
ˆ Management interface: The WeOS management interface feature
(section
22.2.7) utilises firewall functionality to control which network inter-
faces the unit can be managed through.
ˆ Other filter rules:
– Connection tracking (related/established): The WeOS firewall will allow
all packets associated with established connections, as well as packets
© 2018 Westermo Teleindustri AB
this mapping is conducted at the pre-routing stage of the
sections 32.1.4.1
(chapter
31), etc., where allow rules are added matching
Westermo OS Management Guide
(section
(section
32.1.4) involves "translation
fig.
32.1.
and
32.1.4.2.3
for more information.
(chapter
routers(chapter
Version 4.24.1-0
32.1.5) it is possible
fig.
fig.
23), Serial Over IP
43). TTDP will implicitly add
32.1.
32.1. For
(chap-
795
Advertisement
Table of Contents
