D-Link DFL-260 Product Manual - Page 334
Address Translation, 7.1. Overview
UPC - 790069296802
View all D-Link DFL-260 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 334 highlights
Chapter 7. Address Translation This chapter describes NetDefendOS address translation capabilities. • Overview, page 334 • NAT, page 335 • NAT Pools, page 340 • SAT, page 343 7.1. Overview The ability of NetDefendOS to change the IP address of packets as they pass through the NetDefend Firewall is known as address translation. The ability to transform one IP address to another can have many benefits. Two of the most important are: • Private IP addresses can be used on a protected network where protected hosts need to have access to the public Internet. There may also be servers with private IP addresses that need to be accessible from the public Internet. • Security is increased by making it more difficult for intruders to understand the topology of the protected network. Address translation hides internal IP addresses which means that an attack coming from the "outside" is much more difficult. Types of Translation NetDefendOS supports two types of translation: • Dynamic Network Address Translation (NAT). • Static Address Translation (SAT). Both types of translation are policy-based in NetDefendOS, which means that they can be applied to specific traffic based on the source/destination network/interface as well as based on the type of protocol. Two types of NetDefendOS IP rules, NAT rules and SAT rules are used to configure address translation. This section describes and provides examples of configuring NAT and SAT rules. 334