Netopia 2200 User Manual

341

Security

☛

NOTE:

1. The default setting for NAT is

ON.

2. Netopia uses Por t Address Translation (PAT) to implement the NAT facility.
3. NAT Pinhole traffic (discussed below) is always initiated from the WAN side.

Netopia Advanced Features for NAT

Using the NAT facility provides effective LAN security. However, there are user applications
that require methods to selectively by-pass this security function for cer tain types of Inter-
net traffic.

Netopia Gateways provide special pinhole configuration rules that enable users to estab-
lish NAT-protected LAN layouts that still provide flexible by-pass capabilities.

Some of these rules require coordination with the unit’s embedded administration ser-
vices: the internal Web (HTTP) Por t (TCP 80) and the internal Telnet Ser ver Por t (TCP 23).

Internal Servers

The internal ser vers are the embedded Web and Telnet ser vers of the Gateway. You would
change the internal ser ver por ts for Web and Telnet of the Gateway if you wanted to have
these ser vices on the LAN using pinholes or the Default ser ver.

Pinholes

This feature allows you to:

•

Transparently route selected types of network traffic using the por t for warding facility.

FTP requests or HTTP (Web) connections are directed to a specific host on your LAN.

•

Setup multiple pinhole paths.

Up to 32 paths are suppor ted

•

Identify the type(s) of traffic you want to redirect by por t number.