Questions tagged [dnat]
Destination NAT (DNAT) alters the destination IP of a flow, often to admit traffic from the public Internet into a privately-addressed back-end network. For example, DNAT can translate an arriving TCP session from 192.0.2.100:80 to 10.0.0.100:80 for accessing a web server. Firewalls commonly perform DNAT.
19
questions
-1
votes
1
answer
28
views
Router SNATs incoming connections [closed]
For some reason, my router changes the source IP of incoming connections.
I can't find which setting makes this happen or if this expected behavior.
For example, this connection was initiated by an ...
- 99
0
votes
1
answer
168
views
Problem with Configuring Selective DNAT for HTTP Traffic on Fortigate Firewall
I'm currently in the process of setting up a new Fortigate Firewall and have run into an issue while configuring DNAT. From what I understand, this is done through Virtual IPs in Fortigate. My goal is ...
- 1
0
votes
0
answers
106
views
Clarification of external interface vs source interface filter in Fortigate DNAT/VIP
On a Fortigate firewall, one can configure Destination NAT using the DNAT & Virtual IPs section of the GUI, or the config firewall vip section of the CLI.
When you create a DNAT object using ...
- 213
1
vote
0
answers
66
views
IPTables how to nat 10.8.a.b to 10.0.a.b? [closed]
The problem -- Translate 10.8.a.b to 10.0.a.b ?
I have a VPN setup to a bastion host. I'm attempting to map 10.8.0.0/17 into 10.0.0.0/17 so that the IP address 10.8.1.1 gets mapped to 10.0.1.1 in my ...
- 111
1
vote
1
answer
98
views
Linux: address the same IP range (different networks) via two interfaces masqueraded [closed]
Not sure whether it can be done:
Due to a legacy setup there are two separate networks that both use the same class C subnet 192.168.0.0/24. I have a Linux box with two physical interfaces wherein ...
- 113
4
votes
2
answers
3k
views
Difference between "Destination NAT" and "Port Forwarding"
As far as I can tell "Destination NAT (with PAT)" and "Port Forwarding" are different terms for the same thing, or are there any technical differences?
Note: I added PAT because ...
- 173
0
votes
2
answers
222
views
Plant Network Setup
I am looking to setup a plant network as part of a job I am currently working on and I wanted to get some advice on how I am planning on doing it as well as some information at a point where I need a ...
2
votes
0
answers
127
views
Single public IP routed to multiple internal IPs by port [closed]
We have a network setup with a Cisco ASA 5515,IPS firewall running ASA 9.8(4)29 and ASDM 7.12(2). I have several rules setup to route public ip addresses and specific ports to specific internal hosts....
- 143
0
votes
2
answers
110
views
Possible typo in Tanenbaum's book about NAPT
From what I have understood from multiple sources (web and other books) about the concept of NAPT (also called NAT overload or IP masquerading in Linux environment), if there is a scenario like the ...
- 25
0
votes
0
answers
407
views
NAT overload and access to web resources
I have really bizarre problem in clients network.
Clients have access to the internet via NAPT - I'm using several public ip addreses for this purpose. (I'll change ip addresses for obv reasons)
ip ...
- 45
1
vote
1
answer
660
views
Juniper port forward range of ports with dynamic pppoe
I have Juniper SRX300.
Due to some restrictions, i can't use static WAN IP address.
I need to port forward a range of ports and it's working only using nat static section like this:
username# show ...
- 93
1
vote
1
answer
2k
views
Should DHCP relay and destination NAT work together?
Topology:
[PC1]---lan----[RT1 / DHCP relay / DNAT]---wan---[DHCP server]
[PC2]---------/ /
[PC3]----------/
DHCP relay makes the a DHCP broadcast into a unicast and
Forwards it to the DHCP server ...
3
votes
2
answers
885
views
NAT simultaneous tcp connection Open
I am trying to understand how the NAT behaves when two peers behind two NATs with two different public ip Addresses try to establish a TCP connection using simultaneous open. I did some research and ...
2
votes
1
answer
1k
views
use PAT and static nat at the same time as inside and global nat interface
I've setup a network consisting a "AUTOMAÇÃO->Automation" lan, "Rede interna->Internal network" and the WAN (f0/1). Every device is cisco except 200A (fortigate).
Everyone on internal network must ...
- 153
3
votes
2
answers
2k
views
Alias IP Address in VyOS
I have a network where I am looking to alias an IP address/port and redirect it to another machine.
VyOS is on my network at 192.168.55.1 and I have another device on the network at 192.168.55.66. I ...
