Tripp Lite B098016 Owners Manual for B093- B097- and B098-Series Console Serve - Page 95
Firewall and Forwarding
View all Tripp Lite B098016 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 95 highlights
5. Firewall, Failover and OOB Access 5.8 Firewall and Forwarding Tripp Lite console servers with version 3.3 firmware (and later) have basic routing, NAT (Network Address Translation), packet filtering and port forwarding support on all network interfaces. This enables the console server to function as an Internet or external network gateway, via cellular connections or other Ethernet networks on two Ethernet port models: • Network Forwarding allows the network packets on one network interface (i.e. LAN1 / eth0) to be forwarded to another network interface (i.e. LAN2/eth1 or dial-out/cellular). Locally networked devices can IP connect through the console server to devices on remote networks. • IP Masquerading is used to allow all devices on your local private network to hide behind and share one public IP address when connecting to a public network. This type of translation is only used for connections originating within the private network destined for the outside public network. Each outbound connection is maintained using a different source IP port number. When using IP masquerading, devices on the external network cannot initiate connections to devices on the internal network. Port Forwards allow external users to connect to a specific port on the external interface of the console server and be redirected to a specified internal address for a device on the internal network. • With Firewall Rules, packet filtering inspects each packet passing through the firewall and accepts or rejects it based on user-defined rules. • Then Service Access Rules can be set for connecting to the console server/router itself. 5.8.1 Configuring Network Forwarding and IP Masquerading To use a console server as an Internet or external network gateway requires establishing an external network connection, then enabling forwarding and masquerading functions. Note: Network forwarding allows the network packets on one network interface (i.e. LAN1 / eth0) to be forwarded to another network interface (i.e. LAN2/eth1 or dial-out/cellular) so locally networked devices can IP connect through the console server to devices on a remote network. IP masquerading is used to allow all the devices on your local private network to hide behind and share one public IP address when connecting to a public network. This type of translation is only used for connections originating within the private network destined for the outside public network, and each outbound connection is maintained by using a different source IP port number. By default, all console server models are configured so they will not route traffic between networks. To use the console server as an Internet or external network gateway, forwarding must be enabled so traffic can be routed from the internal network to the Internet/external network. 95