Introduction |
The NAT and firewall settings are described in the following using the example of an "exposed host" for IPv4 access from WAN to an Internet gateway via the PPPoE-WAN connection of a be.IP™.
A be.IP™ with current firmware version in the View = Full Access .
An existing Internet gateway (e.g. firewall appliance) should also be reachable on the Internet for all services (e.g. for IPSec), and act as a default gateway and firewall for data traffic in the existing network, IP telephony and all associated mechanisms (e.g. QoS on the WAN connection) should be taken over by the be.IP™. In this case the following systems are passed through regarding connections from WAN and must therefore be prepared accordingly:
- Network Address Translation (NAT/PAT)
- Stateful Inspection Firewall (SIF).
This also applies to services that may require a constant source port and is configured by an outgoing NAT rule. This assumes that there is a "normal" WAN configuration with no load distribution scenario and without extended routing with the current firmware version.
Copyright© Version 08/2020 bintec elmeg GmbH |