NAT advice?

[alanfleming]

Hi there - wonder if you can help. I use ICUK as my ISP, using FTTC, and I'm not sure how best to configure things.

They tell me I have a routed IPv4 /28, and a routed IPv6 /48 in the form 2A00:xxxx:yyyy::/48

On configuring my 8800NLR2 from quick start, I can see that the router is being allocated an IP V4 address not from my routed range, along with DNS. Nothing is being allocated for IPV6. Both IPV4 and IPV6 are not set to static

If I use 1 to 1 NAT to map an IP address from my routed IPv4 block to an internal server - this works fine without any other configuration. But there's no firewall protection.

My question:
For my ISP's configuration, is it possible to set up NAT in such a way that for any IP address in my block, only certain ports are allowed through to an internal IP address? Virtual Server?

I'm using firmware 2.52.d10.

Many thanks in advance!

[billion_fan]

Hi there - wonder if you can help. I use ICUK as my ISP, using FTTC, and I'm not sure how best to configure things.

They tell me I have a routed IPv4 /28, and a routed IPv6 /48 in the form 2A00:xxxx:yyyy::/48

On configuring my 8800NLR2 from quick start, I can see that the router is being allocated an IP V4 address not from my routed range, along with DNS. Nothing is being allocated for IPV6. Both IPV4 and IPV6 are not set to static

If I use 1 to 1 NAT to map an IP address from my routed IPv4 block to an internal server - this works fine without any other configuration. But there's no firewall protection.

My question:
For my ISP's configuration, is it possible to set up NAT in such a way that for any IP address in my block, only certain ports are allowed through to an internal IP address? Virtual Server?

I'm using firmware 2.52.d10.

Many thanks in advance!

If you have a range of static IP's you have three options

1. No NAT mode, with firewall enabled
2. One to One NAT
3. Port forward and specify the WAN IP, (this will only work for incoming connection though)