Hi,
I have set-up one-to-one NAT on my 7800N (latest firmware) to map one of my public IPs to a local IP and it works fine. However, by default, all of the ports are mapped and I want to use the firewall in conjunction with one-to-one NAT to map only specific ports but it doesn't seem to work. Adding a general "drop" rule for the specific local IP does not work. Can anyone advise me how I can achieve this please?
Best,
Richard.
One-to-one NAT and firewall
-
billion_fan
- Posts: 5398
- Joined: Tue Jul 19, 2011 4:30 pm
Re: One-to-one NAT and firewall
You need to setup a firewall rule, with no external ports selected, only internal ports. The internal IP address should be your natted IP eg 192.168.1.100. (the IP selected within the one to one nat rule)rhayden wrote:Hi,
I have set-up one-to-one NAT on my 7800N (latest firmware) to map one of my public IPs to a local IP and it works fine. However, by default, all of the ports are mapped and I want to use the firewall in conjunction with one-to-one NAT to map only specific ports but it doesn't seem to work. Adding a general "drop" rule for the specific local IP does not work. Can anyone advise me how I can achieve this please?
Best,
Richard.
The block rule should be listed below any allow rules, direction incoming/outgoing depending on requirements
The following link I posted three examples of rules, 1 x block rule, 1 x allow rule and the final showing how the rules should be listed (allow rule above the block rule)
viewtopic.php?f=9&t=376
I hope this helps