ZyXEL ZYWALL USG 100 User Guide - Page 106
How to Allow Public Access to a Web Server, 5.5.1 Con NAT, Con NAT
View all ZyXEL ZYWALL USG 100 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 106 highlights
Chapter 5 Managing Traffic 5.5 How to Allow Public Access to a Web Server This is an example of making an HTTP (web) server in the DMZ zone accessible from the Internet (the WAN zone). In this example you have public IP address 1.1.1.1 that you will use on the WAN interface and map to the HTTP server's private IP address of 192.168.3.7. Figure 41 Public Server Example Network Topology 192.168.3.7 DMZ 1.1.1.1 5.5.1 Configure NAT Create a NAT rule to send HTTP traffic coming to WAN IP address 1.1.1.1 to the HTTP server's private IP address of 192.168.3.7. 1 Click Configuration > Network > NAT > Add > Create New Object > Address and create an IPv4 host address object named DMZ_HTTP for the HTTP server's private IP address of 192.168.3.7. Repeat to create a host address object named Public_HTTP_Server_IP for the public WAN IP address 1.1.1.1. 2 Configure the NAT rule. For the Incoming Interface select the WAN interface. Set the Original IP to the Public_HTTP_Server_IP object and the Mapped IP to the DMZ_HTTP object. HTTP traffic and the HTTP server in this example both use TCP port 80. So you set the Port Mapping Type to Port, the Protocol Type to TCP, and the original and mapped ports to 80. Keep Enable NAT Loopback selected to allow users connected to other interfaces to access the HTTP server. 106 ZyWALL USG100-PLUS User's Guide