NETGEAR FVS318N Modem User Manual


 
Firewall Protection
161
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
IPv4 LAN WAN or IPv4 DMZ WAN Inbound Rule: Set Up One-to-One NAT
Mapping
In this example, multi-NAT is configured to support multiple public IP addresses on one WAN
interface. An inbound rule configures the wireless VPN firewall to host an additional public IP
address and associate this address with a web server on the LAN.
The following addressing scheme is used to illustrate this procedure:
NETGEA
R wireless VPN firewall:
- W
AN IP address. 10.1.0.118
- L
AN IP address subnet. 192.168.1.1 with subnet 255.255.255.0
- DMZ IP add
ress subnet. 192.168.10.1 with subnet 255.255.255.0
W
eb server computer on the wireless VPN firewall’s LAN:
- L
AN IP address. 192.168.1.2
- DMZ IP add
ress. 192.168.10.2
- Access to
the web server is the (simulated) public IP address. 10.1.0.52
Tip: If yo
u arrange with your ISP to have more than one public IP address for
your use, you can use the additional public IP addresses to map to
servers on your LAN or DMZ. One of these public IP addresses is used
as the primary IP address of the router that provides Internet access to
your LAN computers through NAT. The other addresses are available to
map to your servers.
To configure the wireless VPN firewall for additional IP addresses:
1. Select Se
curity > Firewall. The Firewall submenu tabs display.
2. If you
r server is to be on your LAN, click the LAN WAN Rules submenu tab. (If your server
is to be on your DMZ, click the DMZ WAN Rules submenu tab.)
3. In the upper
right of the LAN WAN Rules screen, the IPv4 radio button is selected by
default. The screen displays the IPv4 setting.
Click the Add t
able button under the Inbound Services table. The Add LAN WAN Inbound
Service screen displays: