-
22
-
6.3 Using your Router in Bridging Mode
Most users will use their router with NAT enabled. This allows
them to ‘share’ their internet connectivity across their whole
network without needing a block of static IP addresses from
the ISP i.e. the ISP sees the whole of your LAN as a single IP
address and the router automatically sorts out traffic to the
correct local clients:
However using NAT has it’s advantages and disadvantages.
The advantages are it allows you to easily run multiple PC’s
through a single user ISP account and it acts as a natural
firewall stopping unsolicited incoming traffic. However the
disadvantage of NAT is that some software needs the IP
address of the PC to be ‘exposed’ to the outside world – this is
just what NAT stops! For some applications you can get
around this using port forwarding but not always. In this case
the only way around the problem is to turn NAT off and open
up you network.
To do this you will first of all need to get a block of IP
addresses from your ISP so that you can allocate an IP address
to each of your clients. Then untick nat on the Quick Channel/Channel set-up page:
Now with NAT not running both the LAN side and WAN side of the
router are visible from the ISP (internet) along with your whole
network i.e. you will have no security!
Therefore you should now go to the IP Filter configuration and set-up
a rule which denies access to the router on ports 23 (used for Telnet)
and 80 (used for http configuration). Make sure that you have enabled
IP Filter on the Channel Configuration screen then go to the router
configuration, now on its allocated address
(e.g. 123.45.67.137)
.
Select N
etwork Service
, then
IP Filter
. Click on
RULES
, then enter
the details for each of the following rules and click
ADD
:-