InGateway Documentation, Release 0.0.1
–
Source Wildcard: specifies the wildcard mask of the source IP address in the ACL rule.
–
Source Port: specifies the source port number of packets. The value
any
indicates that TCP/UDP
packets with any source ports match the rule. This parameter is available only when the TCP
or UDP protocol is selected.
–
Destination IP: specifies the destination IP address of packets in the ACL rule. If this field is
kept blank, the rule matches packets destined for all networks.
–
Destination Wildcard: specifies the wildcard mask of the destination IP address in the ACL rule.
–
Destination Port: specifies the destination port number of packets. The value
any
indicates that
TCP/UDP packets with any destination ports match the rule. This parameter is available only
when the TCP or UDP protocol is selected.
–
Established Connection: specifies the range of TCP packets controlled. If this option is se-
lected, the system controls TCP packets on established connections and does not control those
on unestablished connections. If this option is deselected, the system controls TCP packets on
both established and unestablished connections. This parameter is available only when the TCP
protocol is selected.
–
Fragments: enables or disables control of fragmented data packets sent from the interface.
–
Log: enables or disables recording of access control logs.
–
Description: records meanings of access control parameters.
• Parameters of an access control list are described as follows:
–
Interface: specifies the name of the interface on which the access control policy is configured.
–
Rule: specifies the inbound, outbound, and administrative rules.
3.3.4.2 NAT
Network address translation (NAT) allows multiple hosts in a LAN to connect to the Internet by using one
or multiple public IP addresses. This feature maps a few public IP addresses to many private IP addresses to
conserve public IP addresses. You can view and configure NAT rules on the
NAT
page. The configuration
procedure is as follows:
1. Choose
Network > Firewall > NAT
to display the
NAT
page.
2. Select an interface from the
Interface
drop-down list.
3. Click the Add icon under
Network Address Translation (NAT) Rules
to add an NAT rule and
set parameters for the rule. For details about these parameters, see
NAT rule parameter description
.
4. Click
OK
to save the configuration, and then click
Submit
to apply the configuration.
As shown in the following figure, the NAT rule allows hosts connected to the IG501 to connect to the Internet
by using the IP address of interface FE 0/1.
174
Chapter 1. InGateway Documentation Site Navigation
Summary of Contents for InGateway501
Page 1: ...InGateway Documentation Release 0 0 1 zhangning Aug 24 2020...
Page 2: ......
Page 4: ...ii...