1:1 NAT on VPN100 version 10.03

MartyWalter
MartyWalter Posts: 32  Freshman Member
First Anniversary 10 Comments
edited April 2021 in Security
Is it possible to have a second static IP from the ISP and route it via 1:1 NAT to an internal server?  If so, what is the proper configuration in Orchestrator to do so?

Comments

  • Zyxel_Charlie
    Zyxel_Charlie Posts: 1,034  Zyxel Employee
    First Anniversary Friend Collector First Answer First Comment
    @MartyWalter
    You can go to Configuration>Firewall>NAT rule, fill static IP from ISP.

  • MartyWalter
    MartyWalter Posts: 32  Freshman Member
    First Anniversary 10 Comments
    So once I set this AND I set a firewall rule, the 1:1 nat worked.

    The next items would be using 1:1 nat within the autovpn.

    i.e.  Site 1 has a static IP from the ISP that I would like to route to a server at Site 2.  Is this possible?
  • Zyxel_Charlie
    Zyxel_Charlie Posts: 1,034  Zyxel Employee
    First Anniversary Friend Collector First Answer First Comment
    @MartyWalter
    On the 1:1 NAT, it mainly support 1 public IP map to 1 private IP. If you only have one Public IP, you could use port forwarding rules to fulfill your scenario.
  • MartyWalter
    MartyWalter Posts: 32  Freshman Member
    First Anniversary 10 Comments
    I understand how 1:1 NAT works, but what I cannot do is map public IP at Site 1 to a private IP in site 2.
  • Jeremylin
    Jeremylin Posts: 166  Master Member
    First Anniversary First Answer First Comment
    Is the Site 2  behind router? If so, the site 2 should be mapped by public IP.

Security Highlight