Kerio Tech Firewall6 User Manual
Page 85
7.3 Definition of Custom Traffic Rules
85
Figure 7.18
Traffic rule — destination address translation
•
No Translation — destination address will not be modified.
•
Translate to — IP address that will substitute the packet’s destination address. This
address also represents the IP address of the host on which the service is actually
running.
The Translate to entry can be also specified by DNS name of the destination computer.
In such cases WinRoute finds a corresponding IP address using a DNS query.
Warning
We recommend you not to use names of computers which are not recorded in the local
DNS since rule is not applied until a corresponding IP address is found. This might
cause temporary malfunction of the mapped service.
•
Translate port to — during the process of IP translation you can also substitute the
port of the appropriate service. This means that the service can run at a port that is
different from the port where it is available from the Internet.
Note: This option cannot be used unless only one service is defined in the Service entry
within the appropriate traffic rule and this service uses only one port or port range.
For examples of traffic rules for port mapping and their settings, refer to chapter
Log
The following actions can be taken to log traffic:
Figure 7.19
Traffic rule — packet/connection logging