I've got a public assignment from my ISP (90.56.56.56/29), I would like to be able to route this through my 7800DX without it being NAT'd but I would still like the private 192.168.1.0/24 address range on my LAN to get NAT'd to the 217.1.1.1/32 of my DSL connection.
I can't seem to do this, if I setup the /29 as an IP alias I have to disable NAT on the WAN connection in order for those addresses to be visable to the internet, however with NAT disabled then my /24 private block can't access the internet.
I could do this with my old draytek 2830, I'm hoping the same is possible with the Billion?
Rgds
Sam
PS I've changed the public blocks slightly for privacy, but the netmasks are correct
Route a public address block without NAT
-
billion_fan
- Posts: 5398
- Joined: Tue Jul 19, 2011 4:30 pm
Re: Route a public address block without NAT
Try using the One-to-One NAT function found under 'NAT'
-
robhorton
- Posts: 3
- Joined: Sat Sep 06, 2014 10:40 am
Re: Route a public address block without NAT
Any chance you could elaborate a little on this - I'm having the same issue? I can get it to do what I want by telnetting in then doing a
but that's not entirely satisfactory as it'll get lost each time the router gets reset (unless there's some way to make that permenent..?).
This must be a reasonably common thing to want to do so I'm surprised there isn't an obvious way to do it in the web interface
Code: Select all
iptables -A POSTROUTING --source 10.165.0.0/16 -j MASQUERADE
This must be a reasonably common thing to want to do so I'm surprised there isn't an obvious way to do it in the web interface
-
billion_fan
- Posts: 5398
- Joined: Tue Jul 19, 2011 4:30 pm
Re: Route a public address block without NAT
Try follow the attached screen shots, use the 'One-to-One NAT' function as shown, as you can see on the attached screen shots, I have mapped a internal IP to a 'Global IP Address', and on the device when I check 'whatsmyip' it shows as one of my global IP addresses.robhorton wrote:Any chance you could elaborate a little on this - I'm having the same issue? I can get it to do what I want by telnetting in then doing a
but that's not entirely satisfactory as it'll get lost each time the router gets reset (unless there's some way to make that permenent..?).Code: Select all
iptables -A POSTROUTING --source 10.165.0.0/16 -j MASQUERADE
This must be a reasonably common thing to want to do so I'm surprised there isn't an obvious way to do it in the web interface
Any device that is not mapped using the ' 'One-to-One NAT' will work behind the normal IP (the IP listed on the status page of the router)
You do not have the required permissions to view the files attached to this post.