Planet MH-5000 User Manual page 70

Multi-homing security gateway

Hide thumbs Also See for MH-5000:

User manual (168 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

Table of Contents

MH-5000 User Manual

If you choose Full Feature mode of NAT at Table 7-4, you may need to edit the rule by yourself. Then you must

determine the NAT type in the NAT rule. What meaning does each NAT type represent? How to determine which NAT

type is best choice for you. You can lookup the explainations and suggestions at Table 7-5.

Type

Map a pool of private IP addresses to a

Many-to-One

single public IP address chosen from the

WAN ports.

Map a pool of private IP addresses to a

subnet range of public IP addresses

chosen from the WAN ports. Only when all

Many-to-Many

ports of the first public IP are used, it will

then use the next public IP address for

transferring by all private IPs.

Map a single private IP address to a single

public IP address chosen from the WAN

ports.

One-to-One

This was useful when you have multiple

public IPs in the WAN ports. And you

intended to map each local server to a

unique public IP on the WAN port.

An internal host is fully mapped to a WAN

One-to-One

IP address. Notice that you must add a

(bidirectional)

firewall rule to forward WAN to LAN/DMZ

traffic.

Description

Table 7-5 The NAT type comparison

If the public IP addresses of your company is insufficient,

and you prefer to increase the node which can connect to

the internet. You can just choose the Many-to-One type to

fit your request.

If the public IP address of your company is not only one

node (ex. you have applied extra-one ISP). You may use

the Many-to-Many type to make the multiple public

addresses sharing the outbound bandwidth. So your

inbound and outbound traffic will be more flexible.

If you wish to specify a unique internal IP address to

transfer a fixed external IP address. You can specify the

One-to-One type.

If you wish to expose the local pc onto the internet, and

open all internet services outside. You can specify the

One-to-One (bidirectional) type. This will make the local

pc you specified fully exposed to the internet. Additionally

you must add a firewall rule to allow WAN to LAN (or

DMZ) traffic forward. Then you can finish the settings. Be

careful to use this type, or it will endanger your network

security.

Usage moment

Chapter 7

NAT

Table of Contents

Planet MH-5000 User Manual page 70

Related Manuals for Planet MH-5000

Related Products for Planet MH-5000

Table of Contents