Network Address Translation (NAT) allows users to redirect traffic from a specific WAN port while traversing a network gateway, such as a firewall.
Port forwarding allows public access to services on a device on the local IP subnet by opening a specific TCP or UDP port for a service in response to inbound traffic.
QuWAN Orchestrator uses 1:1 NAT or Behind NAT mapping to translate the IP address outside the firewall for a specific WAN interface and LAN IP address inside the firewall.
Adding a 1:1 NAT and Port Forwarding Rule
- Log on to QuWAN Orchestrator.
- Go to QuWAN Device.
- Select the device from the drop-down list.
- Go to Firewall.
- Under Port Management & Forwarding, click Add.
The Add Rule window appears.
- Select a WAN port.
- Select from the following mapping type.
Setting
User Action
1:1 NAT
Select 1:1 NAT to map one internal IP address to one external IP address.
Specify the following:
-
LAN IP: Specify the external LAN IP address.
-
Allowed remote IPs: Specify the allowed remote connections.
Note:
-
This field can have up to 15 remote IP addresses.
-
Separate multiple ports with commas (,).
-
Use hyphens (-) without a space to indicate a port range.
-
Use forward slash (/) without a space to indicate an IP segment.
-
Leave the field blank to include all remote connections.
-
Port Forwarding
Select port forwarding to redirect traffic from a selected WAN port to the LAN IP/port of a device within the local IP subnet.
Specify the following:
-
WAN service port: Select the WAN service port number from the drop-down menu.
Note:
-
Click Service port management to refer to the service and associated port numbers.
-
Click Custom Service to add a new service.
For details, see Adding a New Service to Port Forwarding Rule.
-
-
LAN IP: Specify the LAN IP address of the device.
-
LAN port: Specify the LAN service port number of the device.
-
Allowed remote IPs: Specify the allowed remote connections.
Note:
-
This field can have up to 15 remote IP addresses.
-
Separate multiple ports with commas (,).
-
Use hyphens (-) without a space to indicate a port range.
-
Use forward slash (/) without a space to indicate an IP segment.
-
Leave the field blank to include all remote connections.
-
-
- Specify the rule description.
- Click Create.
QuWAN Orchestrator adds the rule.
- Optional: Click to enable the rule.
Adding a New Service to a Port Forwarding Rule
- Log on to QuWAN Orchestrator.
- Go to QuWAN Device.
- Select the device from the drop-down list.
- Go to Firewall.
- Under Port Management & Forwarding, click Add.
The Add Rule window appears.
- Select Port Forwarding.
- Click Service Port Management.
The Service Management window appears.
- Click Custom Service.
- Specify the service port settings.
Setting
User Action
Service
Specify the service name.
Ports
Specify the port for this service.
Tip:
-
Specify a port number between 1 and 65535.
-
Enter up to 15 ports.
-
Separate multiple ports with commas (,).
-
Use hyphens (-) without spaces to indicate a port range.
Protocol
Specify the IP protocol type for this rule.
Description
Enter a description for the service.
-
- Click .
QuWAN Orchestrator adds the service port to the service management list.