One-to-one nat – SonicWALL Internet Security Appliances User Manual

Page 159

Advertising
background image

Page 160 SonicWALL Internet Security Appliance Administrator’s Guide

One-to-One NAT

One-to-One NAT maps valid, external addresses to private addresses hidden by NAT. Computers on
your private LAN are accessed on the Internet at the corresponding public IP addresses.

You can create a relationship between internal and external addresses by defining internal and
external address ranges. Once the relationship is defined, the computer with the first IP address of
the private address range is accessible at the first IP address of the external address range, the
second computer at the second external IP address, etc.
To configure One-to-One NAT, complete the following instructions.
1. Select the Enable One-to-One NAT check box.

2. Enter the beginning IP address of the private address range being mapped in the Private Range

Begin field. This is the IP address of the first machine that is accessible from the Internet.

3. Enter the beginning IP address of the valid address range being mapped in the Public Range

Begin field. This address should be assigned by your ISP.

Alert Do not include the SonicWALL WAN IP (NAT Public) Address or the WAN Gateway (Router)
Address in this range.
4. Enter the number of public IP addresses that should be mapped to private addresses in the

Range Length field. The range length can not exceed the number of valid IP addresses. Up to
64 ranges can be added. To map a single address, enter a Range Length of 1.

5. Click Update. Once the SonicWALL has been updated, a message confirming the update is

displayed at the bottom of the browser window. Restart the SonicWALL for changes to take
effect.

Alert The One-to-One NAT window maps valid, public IP addresses to private LAN IP addresses. It
does not allow traffic from the Internet to the private LAN.
Tip A rule must be created in the Rules section to allow access to LAN servers. After One-to-One NAT
is configured, create an Allow rule to permit traffic from the Internet to the private IP address(es) on
the LAN.

Advertising
Popular Brands
Popular manuals